CSR Creation using OpenSSL for Apache

  1. Login to your server via your terminal client. At the prompt, type:

    openssl req -new -newkey rsa:2048 -nodes -keyout servername.key -out servername.csr

    where 'servername' is the name of your server.
  2. This begins the process of generating two files using apache openssl
    • Private-Key file
    • Certificate Signing Request (CSR) file (used to apply for your SSL Certificate)
  3. When you are prompted for the Common Name (domain name), enter the fully qualified domain name for the site you are securing i.e. www.test.com
    If you are generating a CSR for a Wildcard SSL Certificate your common name should start with an asterisk (such as *.test.com).
  4. You will then be prompted for your organizational information, beginning with geographic information.
    The following fields should match with those you provided during registration
    • Organization Name (O)
    • Organization Unit/Department (OU)
    • Locality/District (L)
    • Country (C)
  5. This will then create your CSR file required for SSL certificate request
  6. Save (backup) the generated .key file as it will be required later for Certificate installation.