IdenTrust Inc. Logo
Home | Login | Contact Us  

Server FAQ

Support > FAQ Library > Server Certificates > Question Back

How do I create a Certificate Signing Request (CSR) using Apache with OpenSSL/ MODSSL?

OpenSSL is the open source project that replaced SSLeay. If you are using SSLeay on your system instead of OpenSSL, substitute ssleay with openssl for the commands.

Create a RSA key for your Apache server:

  • Change to whatever directory you will want to store the necessary files.
  • Type: openssl genrsa - aes256 -out server.key 2048
  • Enter and verify a server.key 'pass phrase'. This pass phrase will be used to create the CSR, and also later to install the server certificate.
Create a CSR with the created key:
  • Type: openssl req -new -key server.key -out server.csr
  • It will ask for additional information. Follow these conventions:
     Note: the following characters cannot be used: < > ~ ! @ # $ % ^ * / \ ( ) ?

    Field Explanation Example
    Country Name The two-letter ISO abbreviation for your country US
    State or Province Name The state or province where your organization is legally located Utah
    Locality Name The city where your organization is legally located Salt Lake City
    Organization Name The exact legal name of your organization IdenTrust, Inc
    Organizational Unit Name Department name within organization Marketing
    Common Name The fully qualified domain name for your web server. Do not include "https://"
    Email Address Your email address

  • Do not enter extra attributes at the prompt.
    Warning: Leave the challenge password blank
The text contents of the created server.csr file is the information we will require you to provide during the online application for the server certificate.

Certificate Management Center
Application Status
FAQ: Before You Buy
HOW-TO: Backup a Certificate
HOW-TO: Replace a Certificate
FAQ: General
FAQ: TrustID
Certificate Security and Protection
Help using your Certificate
Change Control Schedules
Support Main
Contact Support
IdenTrust, Inc. BBB Business Review WebTrust WebTrust Baseline EHNAC EHNAC GSA Schedule SOC
© IdenTrust, Inc. All Rights Reserved.    Home | Contact Us | Legal Policies