The following commands are executed on commandline.
In order to create a CSR in Apache, we must first assign a directory in which the CSR will be saved. This example uses the following path:
If the private key has not yet been created, the following commando must be executed before a CSR can be generated:
openssl req -sha256 -nodes -newkey rsa:2048 -keyout www.yourdomainname.com.key -out www.yourdomainname.com.csr (Replace ‘yourdomainname.com’ with the domain name for which the CSR will be generated.)
The server will automatically continue with a script asking for additional and mandatory information required for the creation of a CSR. Answer the following prompts and press enter after each prompt.
- Country name (2 letter code): NL (de country code in capitals)
- State or Province Name (full name): Noord-holland (de full name of the state or province where the company is located)
- Locality Name (city): Amsterdam (the city where the company is located)
- Organization name: Bedrijfsnaam B.V. (the full company name as was entered into the Trade Register of the Chamber of Commerce or a similar register)
- Organizational Unit Name (section): Sales (the department name)
- Common Name (server FQDN or Your name): www.yourdomainname.com (the Common Name of the domain for which the certificate is requested. If the request is for a wildcard certificate, please enter ‘*.yourdomainname.com’.)
- Email address: firstname.lastname@example.org (The email address)
- A challenge password: Please leave this field empty. Press enter.
- An optional company name: Please leave this field empty. Press enter.
Run the command ‘ls -l’. This will give you a result that will look like the following example:
-rw-r—r—1 root root 1.1k Feb 15 11:42 www.yourdomainname.com.csr
-rw-r—r—1 root root 1.7k Feb 15 11:42 www.yourdomainname.com.key
The file ‘www.yourdomainname.com.key’ is your private key. Please keep this safe at all times. The file ‘www.yourdomainname.com.csr’ is your CSR. You can use this file to request your SSL certificate. Open this file with the following command:
This will give a result that resembles the following example:
-----BEGIN CERTIFICATE REQUEST-----
MIIC7DCCAdQCAQAwgaYxCzAJBgNVBAYTAk5MMRAwDgYDVQQIDAdEcmVudGhlMQ4w DAYDVQQHDAVFbW1lbjEbMBkGA1UECgwSTmV0d29ya2luZzRhbGwgQi5WMQ4wDAYD VQQLDAVTYWxlczEfMB0GA1UEAwwWd3d3Lm5ldHdvcmtpbmc0YWxsLmNvbTEnMCUG CSqGSIb3DQEJARYYc2FsZXMubmV0d29ya2luZzRhbGwuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxG3vxWeYbNBfqVft68DaC5ORUmuK8CE3mGUh EKLJgHbPuC7y7KE1mJekeNDv4gehG7gdhGBOobRTwDYru1VnFCmeXKvLXzIaCczR +Xy09L6Itb1aOnLBv7p8VlxQ7OhViCJvmkAXJGHEcEex3ENaMMuw8YBnsw2JzOZv IzBD1XZm04da2k1Ai0vmwH5aoYTA5F+gE9Izouc9Opkp2k9+tdjUY9uarrMRj7XS E+hI4jqnHH32+vPNFziZ4QbVl5GpjMR/Q0GdIL8Bcu8Sw1u3cQSCu0ZzKZTG6oEJ 2oB8dVjc5BrtXfEYxF0s9T8HyXdx4NQuOtjN1beo6TQzP6s9QQIDAQABoAAwDQYJ KoZIhvcNAQELBQADggEBABJ2vZSMHmErkGpZFRBudCEwR+SEPvdYqCVwojn6R4rZ lAsbZ5TNng2GYWDMmoAsw6zq4/fd8q1cAoOG9fj6z3lEswpU3eqhc0f/wrVtfTN7 vc7yAB81FAcgw5Ad7c8h4oGrd3pYtXX/cLHSLSnpnXp9vc4nsWK3h88K8ZV9ih+e eUK0JDV3wZ3ok80JTTkws48/txIApfV6J1P2SfHazK7kann39Mb0ZnIcfBeYK26R APArN6rLh+Yx/gjqaCBo6sGZLx3J5o+W86zaSoo+v8wvPbNa4JNw8gg4PooY6JVE MEU5t6hHjD9AkNCO8uOi1K+FqzHe0aMq0EVvoHw7AMg=
-----END CERTIFICATE REQUEST-----
The CSR that was generated for your domain name can now be used to request an SSL certificate on www.networking4all.com. Follow the steps to request a certificate in our SSL wizard. When the wizard asks for a CSR, enter the code from your generated CSR file.