New Post: Planning ahead certificate expires

Testing WPP for a few months and proving to be a great tool. Planning on deploying shortly to our organization.

Wanted to clear up 1 assumption before mass deployment.

If I self-sign a certificate it will expire in 5 years. After certificate expires assuming steps are as follows.

1. Generate a new certificate with WPP
2. Configure WPP to use new cert.
3. Use the "Resign" option in WPP to sign all existing update with new cert.
4. Deploy the new certificate to clients and replica server.
   

If there is an easier way to skip any of the step or renew the certificate I'm missing?

Thanks,