Until now that is. I found a really simple PowerShell script that goes through and matches the thumbprint from your old certificate on all bindings in IIS and replaces the bindings with the new certificate! This is particularly useful if you have a wildcard multi-domain certificate that you can use on all sites regardless of hostname!
Here it is!
Just replace the OLDCertificateThumbprint and NEWCertificateThumbprint variables with the thumbprints from your respective SSL certificates!
Shout out to HeyThereSmileMore on GitHub!
At my company we added this as a step in an Octopus deployment to push it out to multiple servers at once. Octopus also gives you the ability to import certificates on multiple servers as well, so creating a deployment release for this is pretty straight forward.
What do you use to manage certificate updates on multiple servers? Let us know in the comments!