How to generate a CSR code in cPanel

There are a few steps required to generate a CSR in cPanel. Following them you will successfully arrive at  the SSL activation step.

  • First, log in to your cPanel account.
  • In the Security section click on ‘SSL/TLS Manager

http://helpdesk.ssls.com/hc/en-us/article_attachments/201856971/1_SSLTLSS_Manager.jpg

 

  • You will see the following options:

http://helpdesk.ssls.com/hc/en-us/article_attachments/201856981/2_cPanel_SSLTLS_manager.jpg

 

Step 1. Generate a Private Key

 

  • Go to the Generate, view, upload, or delete your private keys link in the Private Keys (KEY) menu.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869352/Key.jpg

 

  • Click on the Generate button under the Generate a New Private Key option.

*Important* The Key Size should not go below 2048 bits - we recommend using this length.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869362/3_KeySize.jpg

 

  • The server will generate a Private Key for you. It will be provided in encoded and decoded formats.

*Note* For installing the certificate on multiple servers, the encoded Private Key is required.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869392/4_EncDecKey.jpg

 

Great! The Key is now saved to the Private Keys storage in SSL/TLS Manager.

You can click the Return to SSL Manager button now.

 

http://helpdesk.ssls.com/hc/en-us/article_attachments/201857001/5_ReturnKey.jpg

 

Step 2. Generate Certificate Signing Request (CSR)


Now you need to go to Generate, view, or delete SSL certificate signing requests in the ‘Certificate Signing Requests (CSR)’ menu.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869382/6_CSR.jpg

 

Make sure you select the Key that was just generated from the drop-down list. If you leave it as ‘Generate a New 2048 bit key’ - there will be a completely new Key generated.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201856991/7_CSR1.jpg

=============

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869402/8_CSR_generated_Key.jpg

Enter the domain name you wish to secure. Please make sure you use a Fully Qualified Domain Name (FQDN).

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869412/9_CN.jpg

*Important* If you have a Wildcard certificate, the domain should be specified with an asterisk to secure the subdomains as shown on the image below:

http://helpdesk.ssls.com/hc/en-us/article_attachments/201856961/10_WildcardCN.jpg

 

  • Fill in all the remaining required fields:

 

City (type the full name)

State (type the full name)

Country (select 2-character code from the drop-down list)

Company (if there is no such one, just state your domain name)

Company Unit (if you do not have such one, just use NA)

E-mail (enter any of your e-mail addresses - it will not be used for domain control validation or reception of the issued certificate).    

Passphrase - we advise to leave it blank, because the pass is stored unencrypted in the CSR


Description - just leave it blank as well.

 

*Important* Make sure you use alphanumeric characters only.

 

  • Once you have all the fields filled in, you are to click the Generate button.

 

Congratulations! Your CSR is generated now.

You will need to use the Encoded version.

http://helpdesk.ssls.com/hc/en-us/article_attachments/201869372/11_EncCSR.jpg

 Copy and paste it into the corresponding box during the SSL activation.

Powered by Zendesk