A CSR or Certificate Signing Request is the encrypted text that must be generated from the server that which the certificate is going to be used on. It contains the information that will be included in your certificate such as your organization name, common name (domain name), locality, and country. A private key is also created at the same time you create the CSR.
Instructions on generating CSR
Please select your Product & Server Software Vendor to view detailed instructions for generating a CSR. If your server is not listed or you need additional information, refer to your server documentation or contact your server vendor.
- Check the common name field. You may have specified an IP address (e.g. 22.214.171.124) or a server name (e.g. mywebserver) instead of a Fully Qualified Domain Name such as www.mydomain.com or domain name such as mydomain.com. You must specify a Fully Qualified Domain Name or domain name to enroll for a RapidSSL, FreeSSL or Professional Level certificate.
- Make sure you do not have any illegal characters in any of the fields in the CSR. Illegal characters are [! @ # $ % ^ ( ) ~ ? > < & / , . ” ‘]
- Check the country field. If you are located in the United Kingdom, do not specify your country code when generating the CSR as “UK” – it must be “GB”.
- Make sure you have included the header and footer of the CSR into the enrollment form. The header and footer will look like:
—-BEGIN CERTIFICATE REQUEST —–
—–END CERTIFICATE REQUEST——
Make sure that there are 5 dashes on each side of Begin and End certificate request. There should also be no trailing spaces in the CSR.