I found original CSR.
So I have to renew SSL cert using the old CSR.
The new cert with its trusted root cert will be send in PEM or PKCS7
Then, I have to renew cert using the admin console.

Without original CSR I have to add the new cert (created with auto-csr)
to certificates store.
Then I have to assign new cert to Identity Server, to reverse proxy and
some other objects.

pellerano's Profile: http://forums.novell.com/member.php?userid=3688
View this thread: http://forums.novell.com/showthread.php?t=418559