Certificate Signing Request (CSR) Generation Instructions Certificate Signing Request (CSR) Generation Instructions

Certificate Signing Request (CSR) Generation Instructions.

To install a digital certificate, you must first generate and submit a Certificate Signing Request (CSR) to the Certification Authority (CA). The CSR contains your certificate-application information, including your public key. The CSR is generated with your Web server software, which will also create your public/private key pair used for encrypting and decrypting secure transactions.

SSL Server Certificates from Starfield® are compatible with all secure Web server software. CSR-generation instructions are available for the Web servers listed below.

NOTE: When generating your CSR, specify a key size of 2048.

About the Distinguished Name

During the creation of the CSR, you will be prompted to provide certain information about your organization. The Web server software will use this information to create your Web server certificate's Distinguished Name (DN). Distinguished names uniquely identify individual servers:

The distinguished name contains the following information:

Country Code: The two-letter International Organization for Standardization (ISO-) format country code for the country in which your organization is legally registered. Click the link below for a complete list of ISO country codes.

State/Province: Name of state, province, region, territory where your organization is located. Please enter the full name. Do not abbreviate

City/Locality: Name of the city/locality in which your organization is registered/located. Please spell out the name of the city/locality. Do not abbreviate.

Organization: The name under which your business is legally registered. The listed organization must be the legal registrant of the domain name in the certificate request. If you are enrolling as a small business/sole proprietor, please enter the certificate requester's name in the "Organization" field, and the DBA (doing business as) name in the "Organizational Unit" field.

Organizational Unit: Optional. Use this field to differentiate between divisions within an organization. For example, "Engineering" or "Human Resources." If applicable, you may enter the DBA (doing business as) name in this field.

Common name: The name entered in the "CN" (common name) field of the CSR MUST be the fully-qualified domain name for the website you will be using the certificate for (e.g., "www.domainnamegoeshere"). Do not include the "http://" or "https://" prefixes in your common name. Do NOT enter your personal name in this field.

NOTE: If you wish to apply your certificate to an intranet page, enter as the common name the name of the applicable intranet page (e.g., "intranet" or "web"). The name cannot contain periods. The absence of periods enables us to detect that the common name refers to an intranet page.

If you are requesting a Wild Card certificate, please add an asterisk (*) on the left side of the common name (e.g., "*.domainnamegoeshere.com"). This will secure all subdomains of the common name.

NOTE: If you enter "www.domainnamegoeshere.com" as the Common Name in your certificate signing request, the certificate will secure both "www.domainnamegoeshere.com" and "domainnamegoeshere.com." And vice versa.

Click on the applicable server name to view the instructions.

Certificate Signing Request (CSR) Generation Instructions Certificate Signing Request (CSR) Generation Instructions

Send a message


© ASTEHOST 2006 - 2019