Skip to content

Microsoft IIS 10

1. Access Server in IIS

Launch IIS Manager and click the server name in the Connections menu on the left.

2. Access Server Certificates Manager

On the Home page for the server, locate the IIS section in the center window and double-click Server Certificates. The Server Certificates control panel will open in the center window.

3. Create Certificate Request

  1. In the right-side Actions menu, click Create Certificate Request… The Request Certificate wizard will open in a new window. 
  2. Fill out the Distinguished Name Properties:

Common name: Must be a fully-qualified domain name (FQDN) like “domain.com”. For Wildcard, Enter as *.yourdomain.com.

Organization: Your organization’s legal name. If you do not have a company or organization, you can put another name or N/A here.

Organizational unit: Your department within your organization. If you do not have an organization, put N/A.

City/locality: Your city.

State/province: Your state or region. This information must not be abbreviated, for example you must use “Florida” instead of “FL”.

Country: Your country (select from drop-down list).

Click Next when you are ready to proceed. 

4. Cryptographic Service Provider Properties

On the Cryptographic Service Provider Properties page, select the following options from the drop-down menus:

Cryptographic service provider: Microsoft RSA SChannel Cryptographic Provider

Bit length: 2048

These are the standard options, but you may be able to select different options if needed.

5. File Name

On the File Name page, click the  box to specify a name and location to save your CSR file. The default directory is C:\Windows\System32. Click Finish when you are ready.

6. Locate CSR on your system

Navigate to the directory where you saved your CSR file and open the CSR in Notepad or your preferred text editor.