To request a certificate, a so called CSR (Certificate Signing Request) is required. The generated CSR code is a standardised form of encoding all neccessary information included in a certificate. In case you are not able to generate the CSR directly on your server like recommended, you can also use our generator. Please provide the following data, which will also be included in your issued certificate.
When using the IIS server platform, it is not possible to use an external CSR generator. In this case, the CSR must be generated directly on the IIS.
Please enter the following data, which will also be included in your issued certificate:
Full domain name
Specify the domain name to be protected by the certificate, e.g. secure.yourdomain.eu or shop.yourdomain.eu. For the special case of yourdomain.eu without a subdomain use www.yourdomain.eu for the hostname and the certificate will automatically be valid for both.
NOTE: To request wildcard certificates (valid for any subdomain) use *.yourdomain.eu for the hostname.
Password for private key (optional)
The certificate will be encrypted with a so called "Private Key", which you will receive as a separate file and whick should not be send to anyone else. Optionally you can protect this key with a password. Do not assign a password if you do not have full access to your servers, because it will have to be entered on each server restart.
NOTE: When generating a CSR for Microsoft Azure, this field must remain empty!
Key algorithm
With the key algorithm, you specify which signature procedure is to be used to generate the key pair.
Key encryption (cipher)
You can use the key cipher to specify which method should be used to encrypt the private key.
NOTE: Only relevant if you want to protect the private key with a password!
Hash algorithm (digest)
This value determines how the checksums are created, which are used by the systems involved to check whether the certificate and signature are valid and no manipulation of the data has taken place during transmission.
Organisation
Full name of the company / organisation, which owns the given domain. Individuals input their full name instead. The department can be filled optionally and should be the department which requests and manages the certificate. All locality based information correspond to the organisation's office or individual's home.