CSR (Certificate Signing Request) is a request which is necessary to receive a certificate. This is a file which consists encoding data about your domain and company (for which you create a certificate) and your open key.
First of all you have to generate the key.
Generating a private key
- Log into cPanel.
- Press SSL/TLS button in “Security” section.
- Click Generate, view, upload or delete your private keys.
- Click Generate (you may leave a Description field empty or fill it with a description for your key).
- You will receive a notification that the private key has been generated. Scroll down and click Return to SSL Manager.
- Now you can generate a CSR request. Click Generate, view or delete request SSL certificate signing request.
- Fill in the fields:
- Key. Select your key in the drop-down list.
- Domains. Provide the FQDNs that you are trying to secure, one per line. You may use a wildcard domain by adding an asterisk in a domain name in the form: *.sample.com.
- City. Provide the complete name for the city or locality. Do not use abbreviations.
- State. Provide the name of your state or province. Do not use abbreviations.
- Country. Select your country from the drop-down list.
- Company. Provide the legally-registered name for your business. If your company name includes symbols other than a period or comma, check with your certificate authority to confirm that they are acceptable.
- Company Division. Provide the name of the division or group within the above company. If the division includes symbols other than a period or comma, check with your certificate authority to confirm that they are acceptable.
- Email. Provide a valid email address where you can be contacted for verification of domain ownership.
- Password phrase. Some certificate authorities may require CSRs to have a passphrase. The certificate authority can use a CSR passphrase to confirm the identity of the person or organization with whom you wish to communicate. CSR passphrases are stored unencrypted in the CSR. Because of this, and also because you will share this passphrase with a third party, do not use an important password here.
- Click Generate. You will see the notification:
The certificate signing request for “Your.Domain” has been generated and saved in your user directory. To purchase a trusted certificate copy the following encrypted request to sign your certificate and send it to the CA. Then follow the instructions of the CA.
Now you may use your CSR request to create a SSL certificate.