The following instructions will guide you through the CSR generation process on Microsoft IIS 8. To learn more about CSRs and the importance of your private key, reference our article. If you already generated the CSR and received your trusted SSL certificate, reference our and disregard the steps below.
OpenĀ Internet Information Services (IIS) ManagerClick Start, Control Panel, System and Security, Administrative Tools, and then select Internet Information Services (IIS) Manager. Select the server where you want to generate the certificateIn the left Connections menu, select the server name (host) where you want to generate the request.3. Navigate to Server CertificatesIn the center menu, click the Server Certificates icon under the Security section near the bottom.4. Select Create a New CertificateIn the right Actions menu, click Create Certificate Request.5.
Enter your CSR detailsIn the Distinguished Name Properties window, enter in the required CSR details and then click Next.Note: To avoid common mistakes when filling out your CSR details, reference our Overview of Certificate Signing Request article. Select a cryptographic service provider and bit lengthIn the Cryptographic Service Provider Properties window, select Microsoft RSA SChannel Cryptographic Provider and Bit Length of 2048, then click Next.Note: Bit Length: 2048 is the current industry standard. Endless sky hunt down. You may choose a larger key size, but only if you have a requirement to do so, as longer key lengths increase latency and may reduce compatibility.
One-eyed Jacks are Wild!Wildcard SSL certificates will allow you to secure an unlimited number of subdomains for a registered base-domain. Let's say you own theĀ base-domain example.com. A wildcard certificate for.example.com can secure any-subdomain.example.com. The asterisk (.), or star, is the wildcard and can be any valid subdomain. About the Common Name (CN)Every SSL certificate has a Common Name, or CN for short. When generating a Certificate Signing Request , the CN can cause some head-scratching and Googling.
The meaning of Common Name isn't plainly obvious and it can trip up even the most experienced techies, especially when it comes to the CN for a.The CN is simply the fully qualified domain name that you want to secure with an SSL certificate. If you want to secure just a single non-wildcard FQDN like the CN would be shopping.example.com.Strictly-speaking, the naked, or base-domain, like example.com, is not a true FQDN because it does not include a hostname, but nowadays leaving the www hostname out is widely accepted. Firefox Certificate Viewer The Common Name (CN) for a Wildcard SSL CertificateThe Common Name for wildcard certificates always starts with an asterisk (.
star). Example: a Common Name of.hawaii.com. Will not secure.mystore.com (must start with 'shop')shop.mystore.info (different TLD)shop.my-store.com (different domain)Wildcard SSL certificates are great for reducing not only certificate costs but also certificate management costs. Rather than having to purchase, manage, and renew many certs with the same base-domain you only have to deal with one wildcard certificate.
Additional Resources. Shop for.
Csr Generator
Learn how to generate a CSR forPlease if you have any additional problems or questions.