Our certificate supplier warned us just now that we should change the root certificates because of a problem with Windows systems not trusting the 1024 bit version of those Comodo root certificates.

Is there a simple way of overwriting the existing CA chain or do I have to re-deploy my existing certificate.

Some guidance is needed