Generating a CSR PDF Print E-mail
Written by Carl Friis-Hansen   
Friday, 11 July 2008 15:31

Generating a Certificate Signing Request (CSR)

Whether you are getting a certificate from a CA or generating your own self-signed certificate, the first step is to generate a key.

To generate the keys for the Certificate Signing Request (CSR) run the following command from a terminal prompt:

 

openssl genrsa -out server.key 1024


To create the CSR, run the following command at a terminal prompt:

 

openssl req -new -key server.key -out server.csr


Then send the server.csr to the CA.

The CA will the email you the following files:

AddTrustExternalCARoot.crt
 
carl-fh_com.crt
because Common name was carl-fh.com
PositiveSSLCA.crt
 
server.csr
The request you sent to the CA
server.key
The private key you generated yourself
UTNAddTrustServerCA.crt 

Copy the above crt files to /etc/ssl/certs and the key file to /etc/ssl/private and make sure only root can read this file.

 
 

Add comment

To be able to vote and have easier access to write comments, etc., go to Login and register yourself.
Your user name and email will never leave this website.


Security code
Refresh