Follow these instructions to generate a certificate signing request (CSR) for your Apache Web server. When you have completed generating your CSR, cut/copy and paste it into the CSR box on the SSL certificate ordering page.
To Generate a Certificate Signing Request for Apache
- Log in to your server's terminal (SSH).
- At the prompt, type the following command:
openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csr
Note: Replace yourdomain with the domain name you're securing. For example, if your domain name is coolexample.com, you would type coolexample.key and coolexample.csr.
- Enter the requested information:
Common Name: The fully-qualified domain name, or URL, you're securing. eg. www.yourdomain.com
If you are requesting a Wildcard certificate, add an asterisk (*.) to the left of the common name where you want the wildcard, for eg *.yourdomain.com.
- Organization: Enter your company business name.
- Organization Unit: Example like IT, Admin etc
- City or Locality: Name of the city where your organization is registered/located. Do not abbreviate.
- State or Province: Name of the state or province where your organization is located. Do not abbreviate.
Country: The two-letter International Organization for Standardization (ISO) format country code for where your organization is legally registered.
Note: If you do not want to enter a password for this SSL, you can leave the Passphrase field blank. However, please understand there might be additional risks.
- Common Name: The fully-qualified domain name, or URL, you're securing. eg. www.yourdomain.com
- Open the CSR in a text editor and copy all of the text.
- Open the Ordering URL and Paste the full CSR into the SSL enrollment form to place your order.