To install a digital certificate, you must first generate and submit a Certificate Signing Request (CSR) to the Certification Authority (CA). The CSR contains your certificate-application information, including your public key. The CSR is generated with your Web server software, which will also create your public/private key pair used for encrypting and decrypting secure transactions.
SSL Server Certificates from Star Field Secure Certification Authority are compatible with all secure Web server software. CSR-generation instructions are available for the Web servers listed below.
NOTE: When generating your CSR, specify a key size of 2048.
Click on the applicable server name to view the instructions.
NOTE: If you have an ISP, the provider will generate this CSR file for you upon request.
Web Server IIS 6
Follow the below instructions to generate a CSR for your website. When you have completed generating your CSR, cut/copy and paste it into the CSR field on the SSL certificate-request page.
NOTE: You must have at least Service Pack 1 installed before generating a CSR.
1. To Generate and Submit the Certificate Signing Request (CSR)
- Open the Administrative Tools menu (right click on My Computer; select Manage or Control Panel; select Administrative Tools.)
- Select Internet Information Services.
- Select the computer and website (host) that you wish to secure. Right click and select Properties.
- Click the Directory Security tab.
- Click the server Certificate. button (located in the Secure communications area)
- Click Next in the Welcome to the Web Server Certificate Wizard window.
- Select Create a new certificate; then click Next.
- Select Prepare the request now, but send it later and click Next.
- In the Name and Security Settings window, fill in the name field for the new certificate; then select the bit length (2048 or higher). Click Next.
- Enter your Distinguished Name field information. The following characters cannot be accepted:
< > ~ ! @ # $ % ^ * / \ ( ) ? &.
2. Complete the Distinguished Name Fields:
- Organization- The name under which your business is legally registered. The listed organization must be the legal registrant of the domain name in the certificate request. If you are enrolling as an individual, please enter the certificate requestor's name in the "Organization" field, and the DBA (doing business as) name in the "Organizational Unit" field
- Organizational Unit- Optional. Use this field to differentiate between divisions within an organization. For example, "Engineering" or "Human Resources." If applicable, you may enter the DBA (doing business as) name in this field.
- Common Name- The Common Name is the fully-qualified domain name - or URL - for which you plan to use your certificate, e.g., the area of your site you wish customers to connect to using SSL. For example, an SSL certificate issued for "www.yourcompanyname.com" will not be valid for "secure.yourcompanyname.com." If the Web address to be used for SSL is "secure.yourcompanyname.com," ensure that the common name submitted in the CSR is "secure.yourcompanyname.com."
NOTE: If you are requesting a Wildcard certificate, please add an asterisk (*) on the left side of the Common Name (e.g., "*.coolexample.com" or "www*.coolexample.com"). This will secure all subdomains of the Common Name.
- Country- The two-letter International Organization for Standardization- (ISO-) format country code for the country in which your organization is legally registered.
- State/Province- Name of state or province where your organization is located. Please enter the full name. Do not abbreviate.
- City/Locality Name of the city in which your organization is registered/located. Please spell out the name of the city. Do not abbreviate.
3. Enter your Administrator contact information.
4. Enter a path and file name for the CSR.
5. Verify the information in the request and click Next.
6. On the Completing the Web Server screen, click Finish.
7. Open the generated CSR file; then, using a plain-text editor, such as Windows Notepad, copy and paste the CSR into our online enrollment form.