The CSR file contains information that will be used to create your certificate.
A certificate signing request (CSR) is one of the first steps towards getting your SSL certificate. We recommend to generate it on the same server you plan to install the certificate on, since the process will create the Private Key as well, which is needed during the SSL Certificate installation process.
Access to your IIS Server
Task completion: 20 minutes
How to do it?
1. From the Start menu, look for Internet Information Services (IIS) Manager and open it.
2. Click on the server name.
3. From the menu in the middle, double-click the Server Certificates button.
4. In the Actions menu on the right, click on Create Certificate Request... to launch the Certificate request wizard.
5. In the Distinguished Name Properties window, enter the required information and press next when done.
- Common Name: Usually, this is the fully-qualified domain name (e.g.: www.domain.com, server.domain.com, etc.)
- Organization: The legal entity/name of your organization/company.
- Organizational unit: The department responsible for the certificate within the organization (often people use "IT", or "Administration", or leave it blank).
- City/locality: The city where the organization is located.
- State/province: The state or province where the organization is located.
- Country/region: The two digit country code where the organization is located.
In the Cryptographic Service Provider Properties window, select the appropriate information and press Next when done.
- Cryptographic service provider: From the drop-down list, select Microsoft RSA
- SChannel..., unless you have a specific cryptographic provider.
- Bit length: In the drop-down list, select 2048.
Click the ... button to browse to a location where you want to save the CSR file. If you just enter a filename without browsing to a specific location, the CSR file will end up in C:\Windows\System32.
6. Press Finish and the file will be saved at the desired location.