SSL Store Loading

Apache Certificate Signing Request (CSR) Creation

Quick Steps to Create Certificate Signing Request (CSR) for Apache

If you already have your SSL certificate, you can start installing your SSL certificate by referring to our SSL installation guide. But if you have not yet generated the Certificate Signing Request (CSR), please follow all the steps mentioned in the procedure below:

CSR Creation for Apache using OpenSSL

Step 1 – Start off by logging into your server via terminal client (ssh). On being prompted, type the following:

openssl req –new –newkey rsa:2048 –nodes –keyout servername.key –out servername.csr

opneSSL Server Key

In this command, 'servername' is the name you want to give to your private key and CSR. For easy management, you can make this the name of your server/domain.

In this command, 'server' is the name of your server.

Step 2 – This initiates the process of generating two different files:

  • The Private key, which is a file used for decrypting the connections on your server
  • The CSR, which is used to generate the SSL Certificate on our website

On being prompted for the Common Name (i.e. Domain Name), please enter the fully qualified domain name (FQDN) for the site you intend to secure. And, in case you are creating the CSR for a Wildcard SSL certificate, your common name should start with an asterisk, for example *.sample.com.

Step 3 – After that, fill in the details as prompted about your organization, such as geographical location etc. You may already have the default information set. After this step, your servername.csr file is created.

Step 4 – Now, open the CSR file with a plain-text editor (like Notepad or Text Edit) and copy-paste it into your order form where requested, making sure you have included the BEGIN and END lines.

Step 5 – The .key file is REQUIRED for your certificate to work properly. Please back up the key and remember the file path, as it will be needed to install/configure the certificate.

If someone else can access your key, they can decrypt your visitor’s information. Ensure that the key is stored and transferred securely.

Step 6 – Get started with the process of SSL installation once you receive the certificate from your CA. Remember, your certificate may need to be manually validated by the CA, which can take up to 5 days depending on the type of certificate.

World's Leading Provider of Website Security Solutions