The Certificate Signing Request, or CSR for short, contains important information such as the hostname to be protected or the key length and is normally generated directly on your server together with the PrivateKey. You need the CSR to initiate the order on our website and the PrivateKey to install the certificate on your web server after it has been issued. Never pass the PrivateKey on to third parties, as this could otherwise represent a security risk for visitors to your website. If you are unable to generate the CSR yourself, you can also use the CSR generator on our website.
If you use an IIS, the CSR must be generated on your server. Otherwise, the IIS will not accept the certificate during installation and the certificate will have to be reissued.
You can easily and conveniently place the order on our website. In doing so, specify the CSR generated previously and select the desired validation method. You can choose between three methods for validating a domain-validated certificate:
After your order, you will receive an order confirmation and an e-mail with instructions on how to confirm your domain ownership. By validating the domain for which you wish to purchase the certificate, you confirm to us that you actually own the domain. For this reason, only the methods described above can be used.
Once ownership has been confirmed, the certificate is issued and sent to the e-mail address stored in your account. The message contains a zip file that contains both the actual certificate (.crt) and all required root and intermediate files in a .ca file.
If you have any questions or problems during the ordering process, please do not hesitate to contact our support.