How to Generate Certificate Signing Request (CSR) in Microsoft IIS 8.0

Description

This document provides instructions for generating the Certificate Signing Request (CSR) on Internet Information Services (IIS 8). If you are unable to use these instructions for your server, RapidSSL recommends that you contact Microsoft.

NOTE: To generate a CSR, you will need to create a key pair for your server. These two items are a digital certificate key pair and cannot be separated. If you lose your public/private key file and generate a new one, your SSL Certificate will no longer match. You will have to replace the certificate then.

NOTE: All certificates that will expire after October 2013 must have a 2048 bit key size.

To generate the Certificate Signing Request (CSR) file, perform following steps:

1.   Start the IIS by selecting Tools >  Internet Information Services (IIS) Manager

2.   Select Server Certificates


3.   Select Create Certificate Request on the right side

4.   Complete in full all the required fields in the new page that will appear, without any abbreviation, except the country code.

- Common Name: The Fully Qualified Domain Name that the certificate will be issued to and secure.
- Organisation: The Registered Organisational Name the certificate belongs to.
- Organisational Unit: The Department within the Organisation
- City/locality: The Business registered location (not the actual server location)
- State/province: The Business registered state or province
- Country/region: The two letter ISO country code

5.   Select Next

6.   Select 2048 from the Bit Length: drop down list.

7.   Select Next

8.   Specify the file name and location for the certificate request file

9.   Select Finish

10. Copy the saved CSR when requesting a certificate including the:

     -----BEGIN NEW CERTIFICATE REQUEST----- 

                              and 

        -----END NEW CERTIFICATE REQUEST----- 

11. Once the CSR has been created, proceed to Enrollment.

Contact Information

         During the verification process, RapidSSL may need to contact your organization. Be sure to provide an email address, 
         phone number and fax number that will be checked and responded to quickly. These fields are not part of the certificate.

 

 

Disclaimer:

WarungSSL has made efforts to ensure the accuracy and completeness of the information in this document. However, WarungSSL makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. WarungSSL assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document.

Further, WarungSSL assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. Geotrust reserves the right to make changes to any information herein without further notice.

Close

We uses cookies to remember and process the items in your shopping cart as well as to compile aggregate data about site traffic and interactions so that we can continue improving your experience on our site.