Are there any disadvantages to using a 4096-bit encrypted SSL certificate?

Question

I was recently requesting a SSL cert via GoDaddy and noticed this message:

Answer 1

If you have a 4096 bit SSL certificate, in order to support some clients (especially Java-based clients and some older clients) you will want to generate a 2048 bit or 1024 bit Diffie-Hellman Key and add it to your server certificate. However, if you support a 1024 bit DH key you should also be aware of the Logjam attack. You can accommodate these clients easily by adding a DH key of the appropriate size, but first carefully consider which clients you want to support.