Generating a CSR

The first part of enrolling for your EBIZID SSL Certificate is to generate a Certificate Signing Request (CSR).

The CSR generation is wholly dependent on the software you use on your web server. You can choose your web server type from the list below which will guide you through a step by step instruction for your server type.

Please click on a menu below for your server type

 

Apache with Mod SSL

JavaScript tools

Apache Mod SSL

A CSR is a file containing your certificate application information, including your Public Key.
Generate your CSR and then copy and paste the CSR file into the webform while placing your order for your ssl certificate.

 

 

What your CSR will look like when your finished.

-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST-----
When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----

Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.


Step One:

Generate keys and CSR (Certificate Signing request):

To generate a pair of private keys and public Certificate Signing Request (CSR) for a webserver, "server", use the following command:

openssl req –new –nodes -keyout myserver.key –out server.csr

This creates two files. The file myserver.key contains a private key; do not disclose this file to anyone. Carefully protect the private key.

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.

Step Two

You will now be asked to enter details to be entered into your CSR.

What you are about to enter is what is called a Distinguished Name or a DN.

For some fields there will be a default value, If you enter '.', the field will be left blank.


Country Name (2 letter code) [IE; US] click here for a list of codes
State or Province Name (full name) [IE: Texas]
Locality Name (City) [IE: Dallas]
Organization Name (company) [IE: YourCompany Ltd]
Organizational Unit Name (eg, section) []: [IE: IT Department]
Common Name (Your Domain name) [IE: yourdomain.com or www.yourdomain.com or whatever.yourdomain.com (subdomain)]:
Email Address:

If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

Optionally, enter the following 'extra' attributes to be sent with your certificate request:

A challenge password:
An optional company name:

The fields email address, optional company name and challenge password can be left blank for an EBIZID SSL certificate.

Should you choose to enter and use a challenge password, you will need to make sure that you save that password in a secure place. If you ever need to reinstall your certificate for any reason, you will be required to enter that password. If you forget the password and it is past 30 days from your purchase date, then you will be required to purchase a new certificate. An ounce of prevention will prevent this from happening.

Step Three

Your CSR should now have been created. Open the server.csr by renaming the extension to server.TXT then open in a text editor such as notepad and copy and paste the contents into the online order form when ordering your certificate.

MicroSoft IIS 4.x

JavaScript tools

MicroSoft IIS 4

A CSR is a file containing your certificate application information, including your Public Key.
Generate your CSR and then copy and paste the CSR file into the webform while placing your order for your ssl certificate.

 

 

What your CSR will look like when your finished.

-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST-----
The use of Host Headers is not supported by EBIZID, Microsoft or any other SSL Provider. If you choose to use host headers with SSL, you do so at your own risk. EBIZID will not give refunds when host headers are used. More information can be found on the use of host headers at the Microsoft Website. (See link below)

Your Domain MUST have a dedicate IP address in order to install an SSL Certificate onthat domain, otherwise it will not work. If you do not manage your own server, please contact your hosting company and find out if you have a dedicated IP for your domain. If you do not, they can assign one to your domain. They are very inexpensive.
Microsoft K-base "Host Headers with SSL Not Supported" Article

Step One:

Generate keys and IIS SSL certificate:


1. Open the Microsoft Management Console (MMC) for IIS (available in the Windows NT 4.0 Option Pack
    Microsoft Internet Information Server > Internet Service Manager.
2. In the MMC, Expand the Internet Information Server folder and expand the computer name
3. Open the properties window for the website the CSR is for. You can do this by right clicking on the website
4. Open Directory Security Folder
5. In the Secure Communications area of this Property Sheet, select the Key Manager button and select "Create New Key..."
6. Choose "Put the request in a file that you will send to an authority." Select an appropriate filename (or accept the default).
7. Fill in the appropriate details:
8. Fill in all the fields, do not use the following characters: ! @ # $ % ^ ( ) ~ ? > < & / \


You must choose 2048 key size as we no longer accept 512 or 1024 key bit size CSR's
9. Click Next until you reach the finish page.
10. Click Finish
11. Key Manager will display a key icon under the WWW icon. The key will have an orange slash through it indicating it is not complete.
      Choose the "Computers" menu and select Exit. Select YES when asked to commit changes
12. When you make your application, make sure you include this file (this is your CSR) in its entirety into the appropriate section of the order form. 13. Click Next 14. Confirm your details in the enrollment form 15. Click Finish

If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com
Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.

MicroSoft IIS 5.x and 6.x

JavaScript tools

MicroSoft IIS 5.x and 6.x

A CSR is a file containing your IIS SSL certificate application information, including your Public Key. Generate your CSR and then copy and paste the CSR file into the webform during the order process:



Generate keys and Certificate Signing Request:


1. Select Administrative Tools

2. Start Internet Services Manager

IIS 6 CSR Instructions 1

3. Open the properties window for the website the CSR is for. You can do this by right clicking on the Default Website and selecting Properties from the menu

4. Open Directory Security by right clicking on the Directory Security tab

IIS 6 CSR Instructions 3

5. Click Server Certificate . The following Wizard will appear:

IIS 6 CSR Instructions 4

6. Click Create a new certificate and click Next.

IIS 6 CSR Instructions 5

7. Select Prepare the request and click Next.

IIS 6 CSR Instructions 6

8. Provide a name for the certificate, this needs to be easily identifiable if you are working with multiple domains. This is for your records only.

9. You must select 2048 key bit size as we no longer accept anything lower than 2048. Click Next

IIS 6 CSR Instructions 7

10. Enter Organization and Organization Unit , these are your company name and department respectively. Click Next.

IIS 6 CSR Instructions 8

11. The Common Name field should be the Fully Qualified Domain Name (FQDN) or the web address for which you plan to use your IIS SSL Certificate, e.g. the area of your site you wish customers to connect to using SSL. For example, an EBIZID SSL Certificate issued for ebizid.com will not be valid for secure.ebizid.com.If the web address to be used for SSL is secure.ebizid.com , ensure that the common name submitted in the CSR is secure.ebizid.com .

Click Next.

IIS 6 CSR Instructions 8

12. Enter your country , state and city . Click Next.

IIS 6 CSR Instructions 9

13. Enter a filename and location to save your CSR. You will need this CSR to enroll for your IIS SSL Certificate. Click Next.

IIS 6 CSR Instructions 10

14. Check the details you have entered. If you have made a mistake click Back and amend the details. Be especially sure to check the domain name the Certificate is to be "Issued To". Your IIS SSL Certificate will only work on this domain. Click Next when you are happy the details are absolutely correct.

15. When you make your application, make sure you include the CSR in its entirety into the appropriate section of the order form.

16. Click Next

17. Confirm your details in the enrollment form

18. Click Finish

What your CSR will look like when your finished.

-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST-----
When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----

Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.


To save your private key:

1. Go to: Certificates snap in in the MMC
2. Select Requests
3. Select All tasks
4. Select Export
If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com
Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.

MicroSoft IIS 7.x

JavaScript tools

MicroSoft IIS 7.x






1. Click Start.

2. Select Administrative Tools.

3. Start Internet Services Manager.

4. Click Server Name.

From the center menu, double-click the "Server Certificates" button in the "Security" section.

iis 7 step 1

5. Select ACTIONS menu , Click on Generate Certificate Request

iis 7 step 2

The Request will open the Request Certificate wizard now

iis 7 step 3

6. In the "Distinguished Name Properties" window, enter the information as follows:

The Common Name field should be the Fully Qualified Domain Name (FQDN) or the web address for which you plan to use your IIS SSL Certificate. You will need to insure that the common name submitted in the CSR is the correct domain name / FQDN that you intend to use the certificate for. For wildcard SSL certificates the common name should contain at least one asterisks (*) e.g. *.comodo.com,*.instantssl.com,etc
Enter Organisation and Organisation Unit, these are your company name and department respectively.
Enter your City/locality, State/province and Country/region.


7. Click Next.


8. In the "Cryptographic Service Provider Properties" window, Leave Cryptographic Service provider Default (Microsoft RSA SChannel Cryptographic Provider) Change the Bit Length to (2048) then Click Next.

IIS INstallation 4

Enter a filename and location to save your CSR. You will need this CSR to enroll for your IIS SSL Certificate.

iis step 5

Click Finish.

Your new CSR is now contained within the file c:\certreq.txt

When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----

Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.


Click Next

Confirm your details in the enrollment form

Finish

To save your private key: Go to: Certificates snap in in the MMC Select Requests Select All tasks Select Export
We recommend that you make a note of your password and backup your key as these are known only to you, so if you loose them we can't help! A floppy diskette or other removable media is recommended for your backup files. ** please note that this last step is not required but is recommended if you intend to make any changes to the site.

Cpanel

cPanel Logo

Generating a CSR on cPanel 11


cPanel's SSL/TLS functions are handled by the SSL/TLS Manager module. This area will allow you to generate: SSL certificates, signing requests, and keys. These are all critical parts of using SSL to secure your website.

The first step in generating an SSL certificate is to create a Private Key. Start by reading the instructions in the Private Keys (KEY) section below.





Step 1: Private Keys (KEY)



1. Click on the Generate, view, upload, or delete your private keys

2. When the page loads, scroll to the bottom and you will see the Generate a New Key section. Enter the domain you want to create an SSL Certificate in the Host text box or you can select the domain from the Select a Domain drop down menu. Select the key bit-length. We recommend 2048 (2048 is required for EV certificates)

3. Click on the Generate button.

4. Click on Return to SSL Manager.

5. When the page loads, click on the Go Back link. This will take you to the main SSL/TLS Manager page.

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.


Step 2: Certificate Signing Requests (CSR)



1. Click on Generate, view, or delete SSL certificate signing requests

2. When the page loads, set the following:
  • Host - Select the domain name from the drop down menu.
  • Country - Enter your two-digit country code.
  • State - Enter your two-digit state abbreviation.
  • City - Enter your city's name.
  • Company Division - Enter your company's division.
  • Email - Enter your email address.
  • Pass Phrase - Enter any phrase you want to use for the pass phrase.



3 .Click on the Generate button. (You will now be e-mailed a copy of your CSR.)

4. Click on Go Back

Congratulations you now have a CSR and Private Key ready to use.

CPanel / Web Host Manager 11.32 +

WHM Logo Logo

In Web Host Manager 11.32 and higher the SSL CSR generation has changed a little.

Web Host Manager CSR Generation Step 1

 

Web Host Manager CSR Generation Step 2

 

Web Host Manager CSR Generation Step 3

If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

Ensim

cPanel Logo

Generating a CSR on Ensim Webppliance 3.1.x
















Step 1. Login to the Site Admnistrator or Applicance Administrator and select the site to administer.


2. Select Services


3. Select the Actions box next to Apache Web Server and then select SSL Settings


4. Select Generate and fill in the required details, the site name will automatically be entered into the Common Name field, ensure this is correct and contains the Fully Qualified Domain Name (e.g. secure.ebizid.com, www.ebizid.com, support.ebizid.com,ebizid.com,etc.)

If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com



5. Select Save and you are presented with the RSA Key and the Certificate Request (CSR)

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.



6. Copy the Certificate Request into a text editor, this will be required when you purchase your certificate.

Do not delete this request as it will be needed during the installation of your SSL certificate

What your CSR will look like when your finished.

-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST-----


IBM Web Server

IBM Server

Generating a Certificate Signing Request (CSR) using IBM HTTP Server











Using IKEYMAN for CSR Generation

Note: If you are starting IKEYMAN to create a new key database file, the file is stored in the directory where you start IKEYMAN.

To create a new Key Database:

  • A key database is a file that the server uses to store one or more key pairs and certificates. You can use one key database for all your key pairs and certificates, or create multiple databases.
  • Enter IKEYMAN on a command line on UNIX, or start the Key Management utility in the IBM HTTP Server folder, on Windows.
  • Select Key Database File from the main user interface, select New.
  • In the New dialog box, enter your key database name. Click OK.
  • In the Password Prompt dialog box, enter a password, enter to confirm the password. Click OK.

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.

Creating a New Key Pair and Certificate Request:

  • Enter IKEYMAN on a command line on UNIX, or start the Key Management utility in the IBM HTTP Server folder on Windows.
  • Select Key Database File, from the main user interface and select Open.
  • In the Open dialog box, select your key database name. Click OK.
  • In the Password Prompt dialog box, enter your correct password and click OK.
  • Select Create from the main user interface, select New Certificate Request.
  • In the New Key and Certificate Request dialog box, enter:
    • Key Label: A descriptive comment to identify the key and certificate in the database.
    • Keysize:
    • Organization Name:
    • Organization Unit:
    • Locality:
    • State/Province:
    • Zipcode/Postcode:#
    • Country: Enter a country code. Example: US or GB etc
    • Certificate request file name, or use the default name

  • Click OK.
  • In the Information dialog box, click OK.

    If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

IBM WebSphere

IBM

Generating a CSR for IBM WebSphere Advanced Single Server Edition 4.0









Before being able to enable SSL on WebSphere, you need to have your own certificate. This certificate can be a self-certificate for testing purpose but in any production case, you should have a certificate issued by a Trusted CA. The following steps describe how to get your own certificate.

Creating a keystore
A keystore is where your private key will be saved, in a secure way, and the certificate belongs to it. This keystore can be created either with the SUN keytool or with ikeyman a tool from IBM that is distributed with WebSphere Advanced Single Server Edition 4.0.

Starting ikeyman tool

The command to start it is:
./ikeyman.sh
Once it is started, the following screen appears:

CSR Generation with IBM WebSphere

Specifying a keystore
From the main application, you can either use an existing keystore or create a new one. In the example below we want to create a new keystore that will be used only by WebSphere.
In the IBM Key Management console, select the option Key Database File/New. A dialog box will appear:

CSR Generation with IBM WebSphere

The options are:

OptionValue
Key database typeJKS
File NameThe name of the keystore. In the example: .keystore
LocationThe location of the keystore. In the example: /usr/bin/java/websphere/bin

Creating a certificate request
You first need to create a certificate request before getting your certificate. The certificate request is created in Create/New Certificate Request. A new dialog box will appear where you are asked to enter some information:

CSR Generation with IBM WebSphere

The options are:

OptionValue
Key LabelA name that identify the request in list screen. For instance, sitecert
Key SizeUse the default value of 2048
Common NameThis is the Fully Qualified Domain Name, this is what will be in the URL after (but not including) the 'http://' and before the next '/'.
Example www.ebizid.com
Organization The Organization name. Example EBIZID
Organization UnitThe Organizational Unit. Example R&D
Locality The locality of your organization. Example Detroit
State/Province The province of your organization. Example Michigan
The country of your organization. Example US
Request file nameThis is the name of the file where your CSR will be created.
In the example: /usr/bin/java/websphere/bin/certreq.arm
Now click on OK to generate your request. When the request is created, a key pair is also generated (a private key only stored in the keystore and a public key stored in the certificate you receive). If the request is successfully created, a dialog should inform you about it:

CSR Generation with IBM WebSphere

You will need the contents of this file when applying for your certificate.

Java Based Web Servers

Java

Generating a Certificate Signing Request (CSR) using Java Based Web Servers











1. Create Keystore with Keytool

--> keytool -genkey -keyalg RSA -keysize 2048 -keystore domain.keystore

If you want to use an alias for the site certificate include -alias MY_SITE (where MY_SITE is the alias name), default is mykey.

(NOTE validity may vary)

The following questions will be asked if not known:
Enter keystore password: (NOTE remember this for later use)
What is your first and last name? - This is the Common Name (Domain Name)
What is the name of your organizational unit?
What is the name of your organization?
What is the name of your City or Locality?
What is the name of your State or Province?
What is the two-letter country code for this unit?


You will then be asked if the information is correct:
Is CN=www.yourdomain.com, OU=Your Organizational Unit, O=Your Organization, L=Your City, ST=Your State, C=Your Country correct?

When you answer 'y' or 'yes' the password is then requested:
Enter key password for <mykey>
NOTE: Make a note of this password
<mykey> is the default alias for the certificate

Alternative Keystore Generation Method

Alternatively, you can create the keystore without going through all of the prompts:

--> keytool -genkey -keyalg RSA -keysize 2048 -dname "CN=www.yourdomain.com, O=Default, C=US" -keystore domain.keystore

2. Create CSR with Keytool

--> keytool -certreq -keyalg RSA -file domain.csr -keystore domain.keystore

You will be prompted to enter the password.
Enter keystore password:

If the password is correct then the CSR is created.
If the password is incorrect then a password error is displayed.
You will need the text from this CSR when requesting a certificate.



When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----

Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.
Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.
If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

Novell iChain Server

iChain

Generating a CSR using Novell I-Chain








There are 2 possible views for creating a CSR

Start the ichain Management http://youriChain:1959/appliance/config.html
Select the Home-Certificate Maintenance panel.
Select Create to create the CSR

Enter the following fields:

Certificate name - Any alphanumeric name as long as it is unique
Subject name - The DNS name of the site that is to be secured
Signature algorithm - can be SHA or MD5
RSA Key size - use 2048 bits
Select 'Use external certificate authority'
Organization - The company that owns the web site
Note: Entering spaces may cause problems
City, State or Province code, two character country code

Select OK.

The Certificate Maintenance panel will now look like this:

Novell I-Chain CSE Installation

Select Apply to generate the CSR. When it is ready the Status will indicate "CSR in Progress".

Novell I-Chain CSE Installation

When you select 'View the CSR'. You should see:

Novell I-Chain CSE Installation

This is your certificate request that you will need during application.

Novell ConsoleOne

ConsoleOne

CSR Generation: Novell ConsoleONE









To create a Certificate Signing Request (CSR) :

  1. Log in to the eDirectory tree as an administrator with the appropriate rights.
  2. Start ConsoleOne
  3. Right-click the container object that contains the server that will run your cryptography-enabled applications; then select 'New', 'Object'. Click the Security tab, then certificates.
  4. From the list box in the New Objects dialog box, double-click NDSPKI:Key Material.

This opens the Create a Server Certificate dialog box and the corresponding wizard that creates the Server Certificate object. For specific information on the dialog box or any of the wizard pages, click Help.

Lotus Domino 4.6x - 5.0x

Lotus

CSR Generation: Lotus Domino server 4.6x and 5.0x










For version 4.6x:

  • From the administration panel, click System Databases and choose Open Domino Server Certificate Administration (CERTSRV.NSF) on the local machine. Click Create Key Ring.
  • Enter a name for the key ring file in the "Key Ring File Name" field.
  • Enter a password for the server key ring file in the "Key Ring Password" field.
    Note: The password is case sensitive.
  • Select a key size. This is the size Domino uses when creating the public and private key pairs.
    Note: If you are using the international version of Domino, only the 512 bit key size will work for you unless you have Release R5.04.
  • Specify the components of your server's distinguished name.
  • Click Create Key Ring. Click OK.
  • Click Create Certificate Request.

Note: You must select all the text in the second dialog box, including Begin Certificate and End Certificate when the CSR is requested.

For R5.0x:

  • Launch the Domino Administration client.
  • Select File-Open Server and select the Domino server you wish to administer, Click the file tab, double click on Server Certificate Administration database (certsrv.nsf)
  • From the administration panel, click System Databases and choose Open Domino Server Certificate Administration (CERTSRV.NSF) on the local machine.
  • Click Create Key Ring.
  • Enter a name for the key ring file in the "Key Ring File Name" field.
  • Enter a password for the server key ring file in the "Key Ring Password" field.
    Note: The password is case sensitive. If you are using the international version of Domino, only the 512 bit key size will work for you unless you have Release R5.04.
  • Specify the components of your server's distinguished name.
  • Click Create Key Ring. Click OK.
  • Click Create Certificate Request.

Note: You must select all the text in the second dialog box, including Begin Certificate and End Certificate when the CSR is requested.

Lotus Domino Go

Lotus

CSR Generation: Lotus Domino Go 4.6.2.6+











IBM-Lotus Domino Go 4.6.2.6+ CSR Creation

Start the MKKF utility by typing mkkf at the command prompt The system displays a menu page

Note: The MKKF utility places the keyring file in the current directory unless otherwise specified

Select N to create a new key ring file
After you type in a key ring file name, the next menu screen will come up
Select W to work with keys and certificates
Select C to create a new key and certificate request.
Type a password when prompted
Select P to choose PKCS#10 certificate request format at the next menu.
Select M to modify the certificate request fields at the next menu.

Note: The following characters can not be accepted: < > ~ ! @ # $ % ^ * / \ ( ) ?&

Country Name - The two-letter ISO abbreviation for your country
State or Province Name - The state or province where your organization is located. Note: Do not use abbreviations

City or Locality - The city where your organization is located
Organization Name - The exact legal name of your organization
Organizational Unit - Optional for additional organizational information
Common Name - The fully qualified domain name for your web server
Note: You will get a certificate name check warning if this is not an exact match
If you intend to secure the URL https://secure.yourdomain.com/, then your CSR's server common name must be secure.yourdomain.com

Server Admin.'s email address - Your email address

Select R to create the key and certificate request
After the key and certificate request are created, select X to exit from MKKF utility
Save the changes to the key-ring file

Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.

iPlanet Web Server 4.x - SunONE Application 6.x

Sun One

Generating a Certificate Signing Request (CSR) using I-Planet Web Server









Generating a Certificate Signing Request (CSR) using I-Planet Web Server

1. Sign onto the Webserver and select the server to manage

2. Select the Security tab and then Request a Certificate

3. Complete the required boxes and click OK

4. In the CA e-mail field, put your own e-mail address. An email is then sent to the email address specified containing your CSR

5. The CSR will be required when requesting your certificate.

When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----

Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.
Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.
If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

F5 Big IP

F5 Big IP Server

F5 Big IP Controller CSR Creation









F5 Big IP Controller CSR Creation

You can generate a key, a temporary certificate, and a certificate request form with the Configuration utility or from the command line.

Note: We recommend using the Configuration utility for this process. The certification process is generally handled through a web page. Parts of the process require you to cut and paste information from a browser window in the Configuration utility to another browser window on the website.

You must have a separate certificate for each domain name on each BIG-IP Controller or redundant pair of BIG-IP Controllers, regardless of how many non-SSL web servers are load balanced by the BIG-IP Controller.
If you are already running an SSL server, you can use your existing keys to generate temporary certificates and request files. However, you must obtain new certificates if the ones you have are not for the following web server types: Apache + OpenSSL Stronghold

Generating a key and obtaining a certificate using the Configuration utility
To obtain a certificate, you must have a private key. If you do not have a key, you can use the Configuration utility on the BIG-IP Controller to generate a key and a temporary certificate. You can also use the Configuration utility to create a request file that you can submit. You must complete the following tasks in the Configuration utility to create a key and generate a certificate request.
Generate a certificate request
Submit the certificate request to a certificate authority and generate a temporary certificate
Install the SSL certificate from the certificate authority
Finally, install the intermediate certificate authority certificate.

To create a new certificate request using the Configuration utility
In the navigation pane, click Proxies. The Proxies screen opens.
On Proxies screen, click the Create SSL Certificate Request tab, the New SSL Certificate Request screen opens. In the Key Information section, select a key length and key file name, choose 2048 bytes. Type in the name of the key file. This should be the fully qualified domain name of the server for which you want to request a certificate. You must add the .key file extension to the name.

In the Certificate Information section, type the information specific to your company.
Country - Type the two letter ISO code for your country
State or Province - Type the full name of your state or province
Locality - Type the city or town name
Organization - Type the name of your organization
Organizational Unit - Type the division name or organizational unit
Domain Name - Type the name of the domain upon which the server is installed
Email Address - Type the email address of a person to be contacted about this
Challenge Password - Type the password you want to use as the challenge password
Retype Password - Retype the password you entered for the challenge password.

Click the Generate Certificate Request button.
After a short pause, the SSL Certificate Request screen opens. Use the SSL Certificate Request screen to start the process of obtaining a certificate from a certificate authority, and then to generate and install a temporary certificate.

Generate and install a temporary certificate
Click the Generate Self-Signed Certificate button to create a self-signed certificate for the server. We recommend that you use the temporary certificate for testing only. You should make your site live only after you receive a properly-signed certificate from a certificate authority. When you click this button, a temporary certificate is created and installed on the BIG-IP Controller. This temporary certificate allows you to set up an SSL gateway for the SSL Accelerator while you wait for a certificate authority to return a permanent certificate.

Generating a key and obtaining a certificate from the command line
To obtain a valid certificate, you must have a private key. If you do not have a key, you can use the genconf and genkey utilities on the BIG-IP Controller to generate a key and a temporary certificate. The genkey and gencert utilities automatically generate a request file that you can submit to a certificate authority. If you have a key, you can use the gencert utility to generate a temporary certificate and request file.

These utilities are described in the following list:

genconf - This utility creates a key configuration file that contains specific information about your organization. The genkey utility uses this information to generate a certificate.

genkey - After you run the genconf utility, run this utility to generate a temporary 30 day certificate for testing the SSL Accelerator on the BIG-IP Controller. This utility also creates a request file that you can submit to a certificate authority to obtain a certificate.

gencert - If you already have a key, run this utility to generate a temporary certificate and request file for the SSL Accelerator.

To generate a key configuration file using the genconf utility
If you do not have a key, you can generate a key and certificate with the genconf and genkey utilities. First, run the genconf utility from the root (/) with the following commands:

cd /
/usr/local/bin/genconf

The utility prompts you for information about the organization for which you are requesting certification. This information includes:
The fully qualified domain name (FQDN) of the server
The two-letter ISO code for your country
The full name of your state or province
The city or town name
The name of your organization
The division name or organizational unit

To generate a key using the genkey utility
After you run the genconf utility, you can generate a key with the genkey utility.

cd / /user/local/bin/genkey

After the utility starts, it prompts you to verify the information created by the genconf utility. After you run this utility, a certificate request form is created in the following directory:

/config/bigconfig/fqdn.req

In addition to creating a request form that you can submit to a certificate authority this utility also generates a temporary certificate. The temporary certificate is located in:

/config/bigconfig/ssl.crt/fqdn.crt

The "fqdn" is the fully qualified domain name of the server. Note that you must copy the key and certificate to the other controller in a redundant system, but for an SSL proxy you should have a valid certificate from your certificate authority.

To generate a certificate with an existing key using the gencert utility
To generate a temporary certificate and request file to submit to the certificate authority with the gencert utility, you must first copy an existing key for a server into the following directory on the BIG-IP Controller:

/config/bigconfig/ssl.key/

After you copy the key into this directory, type the following command at the command line:

cd / /user/local/bin/gencert

After the utility starts, it will prompt you for various information. After you run this utility, a certificate request form is created in the following directory:

/config/bigconfig/ssl.crt/fqdn.req

The "fqdn" is the fully qualified domain name of the server.

F5 Big IP 9.x

  • Launch the f5 BIG-IP web GUI.

  • Under Local Traffic select SSL Certificates then Create.

  • Under General Properties give your certificate a name.(ex.: ComodoSSL, Comodo Wildcard SSL, Comodo Unified Comm. Cert, etc.)

    Note: This name will be used in the future to identify this certificate.

  • Under Certificate Properties enter the following information:

    1. Issuer: EBIZID

    2. Common Name: Fully Qualified Domain Name (FQDN) of the server.
      Example: domain.com, mail.domain.com, or *.domain.com.

    3. Division: Your department; such as 'IT','Web', 'Office', etc.

    4. Organization: The full legal name of your organization/company (ex.: Acme Safe Co.)

    5. Locality, State or Province, Country: City, state, and country where your organization is located.

    6. E-mail Address: Your email

    7. Challenge Password, Confirm Password: Your password


  • Under Key Properties select 2048.

  • Click the Finished button.

  • You should now be provided with the text of a CSR. You will want to copy and paste the entire body of that file into the Comodo ordering process when prompted.

    BEA Web Logic

    BEW Web Logic Server

    BEA Weblogic Certificate Signing Request (CSR) Generation









    Requesting a Private Key and Digital Certificate



    You must submit your request in a particular format called a Certificate Signature Request (CSR). WebLogic Server includes a Certificate Request Generator servlet that creates a CSR. The Certificate Request Generator servlet collects information from you and generates a private key file and a certificate request file. You must then submit the CSR. Before you can use the Certificate Request Generator servlet, WebLogic Server must be installed and running.

    Start the Certificate Request Generator servlet (certificate.war). The .war file is automatically installed when you start WebLogic Server. In a Web browser, enter the URL for the Certificate Request Generator servlet as follows:

    https://hostname:port/Certificate

    hostname is the DNS name of the machine running WebLogic Server. port is the number of the port at which WebLogic Server listens for SSL connections.

    For example, if WebLogic Server is running on a machine named comodo and it is configured to listen for SSL communications at the default port 7002 to run the Certificate Request Generator servlet, you must enter the following URL in your Web browser:

    https://ebizid:7002/certificate

    The Certificate Request Generator servlet loads a form in your web browser. Complete the form displayed in your browser.

    Click the Generate Request button. The Certificate Request Generator servlet displays messages informing you if any required fields are empty or if any fields contain invalid values. Click the Back button in your browser and correct any errors.

    Note: Private Key Password If you don't not specify a password, you will get an unencrypted RSA private key. If you specify a password, you will get a PKCS-8 encrypted private key. When using PKCS-8 encrypted private keys, you need to enable the Use Encrypted Keys field on the SSL tab of the Server window in the Administration Console.

    When all fields have been accepted, the Certificate Request Generator servlet generates the following files in the startup directory of your WebLogic Server: mydomain_com-key.der-The private key file. The name of this file should go into the Server Key File Name field on the SSL tab in the Administration Console. mydomain_com-request.dem-The certificate request file, in binary format. mydomain_com-request.pem-The CSR file that you submit.. It contains the same data as the .dem file but is encoded in ASCII so that you can copy it into email or paste it into a Web form.

    When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

    -----BEGIN CERTIFICATE REQUEST-----
    -----END CERTIFICATE REQUEST-----

    Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.
    Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.
    If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

    OS X Server 10.5 & 10.6

    OS X Server

    CSR Generation: OS X Server 10.5 & 10.6











    Start Server Admin and login to your server.

  • Click Certificate icon across the top of the window.

  • Press + button and fill in the following information information for your CSR:

    Common Name: Enter the Fully Qualified Domain Name (FQDN) that you want to use with your SSL certificate. eg. www.ebizid.com, mail.example.com, etc.
    Organization: Enter the name for your company or organization.
    Organizational Unit: Enter the name of your department of your organization.
    City (Locality): Enter the name of your city.
    State/Province: Enter the name of your State/Province. Do not abbreviate.
    Country Code: Enter the two-letter country code for your country.

  • Press the Save button in the lower right hand corner of the window to save your details.

  • Click the wheel button and a dropdown menu will appear and select Generate Certificate Signing Request (CSR) from the list.

  • From the pop-up window that appears in the previous step, drag the icon in the upper-left hand corner of the window to the desktop and this will create your CSR file on your desktop.

  • Note: You may open the CSR with any text-editor of your choice.

    SonicWall

    SonicWall

    Generating a Certificate Signing Request (CSR) using SonicWALL SSL Offloader






    Step 1: Install OpenSSL

    In order to be able to generate a CSR, you will need to have OpenSSL installed on your computer.

    Step 2: Create your Certificate Signing Request
    To generate a key pair consisting of Private Key and Certificate Signing Request (CSR) use the following command:

    openssl req -new -des3 -keyout key.pem -out req.pem

    You will now be asked to enter the following data for your CSR:

    • Country Name: Enter the two-letter country code for your country
    • State or Province Name: Enter the name of the State or Province in which your organization operates. Do not abbreviate
    • Locality Name: Enter the name of your city, town, or other locality
    • Organization Name: Enter the name of your organization
    • Organizational Unit: Enter the name of your division, department, or other operational unit of your organization
    • Common Name: Enter the domain name that you want to use your SSL certificate with
    • E-mail address: Enter your e-mail address
    • Challenge Password: Enter a password with at least 6 characters. Do not forget the password, you will need it to install the certificate
    • Optional Company Name: Enter '.' to leave the field blank

    You will now have created two files, the Private Key file named key.pem and Certificate Signing Request (CSR) file named req.pem
    When asked to "Copy & Paste" your CSR into the CSR field during the order process, open the req.pem file with a text editor and copy and paste the content into the CSR field on the order form.

    For additional information visit the OpenSSL Website or the Sonicwall Website

    Plesk

    Plesk

    Plesk Server Administrator 6 CSR Creation









    Generating a Certificate Signing Request

    To generate a certificate signing request (CSR) follow these steps:

    1. At the Certificate repository page, click on the ADD button. The certificate creation page will open.
    2. Specify the certificate name.
    3. The Bits selection allows you to choose the level of encryption of your SSL certificate. Select the appropriate number from the drop-down list.
    4. Select a country from the drop-down list
    5. Specify the state or province, location (city).
    6. Enter the appropriate organization name and department/division in the field provided.
    7. Enter the Domain Name for which you wish to generate the certificate signing request.
    8. Click the REQUEST button. A certificate signing request will be generated and added to the repository. You will be able to add the other certificate parts later on.

    Note: Do not lose your RSA Private Key, you will need this later.

    Generating a CSR using an existing private key

    In some cases you have a certificate in the repository, which has only the private key part and the other parts are missing due to some reasons. To generate a new Certificate Signing Request using the existing private key, follow these steps:

    1. At the certificate repository page, select from the list a certificate, which has the private key part only. You will be taken to the SSL certificate properties page.
    2. Click REQUEST.
    3. Please 7 & 8

      Plesk Server Administrator 7 CSR Creation
      1. Login to the Plesk 7 Control Panel.
      2. From the left hand menu, select 'Domains'.
      3. Click on the domain name that you wish to generate the CSR for.
      4. Click on the 'Certificates' menu item.
      5. Click on the 'Add New Certificate' item.
      6. Fill out the information on the page. All items noted by red asterisks must be filled in
      7. Press the 'Request' button.
      8. You will then be returned to the Certificates menu. From the list at the bottom of the page, click on the certificate name that you just created. Mid-way down the page, there is a box. Copy the content of this box labelled 'CSR'. It should look similar to the example below:
      9. -----BEGIN CERTIFICATE REQUEST-----
        MIIBSzCB9gIBADCBkDELMAkGA1UEBhMCVVMxDjAMBgNVBAgTBVRleGFzMQ4wDAYD
        ....
        HNX2uFXghrjBJw3mtZ36JhG7cLeWZK7B+4dmOL4f2ToreSW946wQMxK5ZYYOK68=
        -----END CERTIFICATE REQUEST-----

      10. Paste the CSR into the order screen when purchasing an SSL certificate.
      When sending your CSR to EBIZID, you MUST copy and paste the entire CSR Request, including the beginning and ending lines as shown below.

      -----BEGIN CERTIFICATE REQUEST-----
      -----END CERTIFICATE REQUEST-----

      Failure to do so will result in you having to resend your CSR in the correct format to EBIZID which will cause a prolonged delay in processing your order.
      Backup the private key, as there is no means to recover it should it be lost. The private key is used as input in the command to generate a Certificate Signing Request (CSR). EBIZID will reissue certificates no more than 30 days from the time of purchase. If you do not backup your key and your server fails or other problems occur after the 30 days, you will then be required to purchase a new certificate. An ounce of prevention is all that is required to prevent this from happening.
      If you are ordering a Wildcard Certificate, the Common Name field must be in the format of: * . yourdomain . com

    Outlook Communication Server

    Office COmmunication Server

    How to generate a CSR for Microsoft Office Communications Server 2007









    How to generate a CSR for Microsoft Office Communications Server 2007

    1. After you have installed Office Communications Server 2007 (OCS) click Start -> Programs -> Administrative Tools -> Office Communications Server 2007

    2. Expand the items in the snap-in until you get to the Enterprise Edition Server that you installed.

    3. Right-click on the correct server name and select "Certificates". Click next to get past the Certificate Wizard welcome screen.


    4. Choose to "Create a new Certificate" and click Next.


    5. Choose to "Prepare the request now, but send it later" and click Next.


    6. Under "Name" enter name for your certificate. This name is simply a label for the certificate, so you can name it whatever you like such as the server name or the pool FQDN.


    7. In order to export the certificate to other servers, you need to make sure that "Mark cert as exportable" is checked. Then click Next.

    8. For "Organization" enter your EXACT legal company name including Inc, LLC, etc. if applicable.

    9. For "Organizational Unit", enter the department such as Accounting or Engineering and click Next.


    10. For "Subject Name" enter the exact Fully Qualified Domain Name of the pool. Select the option to "Automatically add local computer name", and click Next.


    11. Enter your Country, State/Province, and City details and click Next.


      Choose a file name and location to save your new Certificate Request (CSR). The file will be a text file, so it should be given a .txt extension. Click Save.

    12. Review the settings and finish the certificate wizard. This will save the CSR file to the location you entered above. While ordering your SSL Certificate, you will be asked to copy and paste your CSR to the EBIZID order form. Open your CSR file with notepad, and copy and paste the contents to the order form. Select "Microsoft Office Communications Server 2007" as the server platform.


    For more information, see Microsoft's official Office Communications Server documentation, located at http://r.office.microsoft.com/r/rlidOCS?clid=1033&p1=library

    Alternative Validation Methods

    JavaScript tools

    Apache Mod SSL









    There are 2 mechanisms for DCV:

      eMail-based DCV (Traditional)

    1. You will be sent an email to an administrative contact for your domain. The email will contain a unique validation code and link. Clicking the link and entering the code will prove domain control.

      Valid email addresses are:
      Any email address which our system can scrape from a port 43 whois check;

      The following generic admin type email addresses @ the domain for which the certificate is being applied:
      admin@
      administrator@
      postmaster@
      hostmaster@
      webmaster@

    2. HTTP-based DCV

    3. The CSR you submit to EBIZID will be hashed. The hash values are provided to you and you must create a simple plain-text file and place this in the root of your webserver and served over HTTP-only!

      The file and it's content should be as follows:
      http://yourdomain.com/<Upper case MD5 hash of CSR>.txt>

      Content (as a plain text file):

      <SHA1 hash of CSR>
      ebizidca.com

      Note: Serving the page over HTTPS or using an HTTP 302 redirect to an HTTPS will cause a failure of verification. Please use HTTP only for this procedure!



    Important things to remember!


    The Common Name field should be the Fully Qualified Domain Name (FQDN) or the web address for which you plan to use your Certificate, e.g. the area of your site you wish customers to connect to using SSL. For example, an EBIZID SSL Certificate issued for www.yourdomain.com will not be valid for secure.yourdomain.com. If the web address to be used for SSL is secure.yourdomain.com, ensure that the common name submitted in the CSR is secure.yourdomain.com

    Unacceptable Characters in the CSR


    Do not use any of the following characters in the FQDN Name: ! @ # $ % ^ * ( ) ~ ? > < & / \ unless you are ordering a wildcard certificate. Then you should use the format: *.yourdomain.com and use that as the common name in your csr.

    I don't see anywhere in my account or server to generate the CSR?

    If your Web server is operated by an ISP or hosting service, they will generate the CSR file for you upon request. Most hosting providers will ask you to submit a support ticket in their system to request the CSR and then you will need to submit your signed certificate that you receive back from us through that ticket with your provider so they can install the certificate for you. If your provider has any questions you can provide them with our contact details if they need assistance to help generate or install your certificate.

    How to submit your CSR to EBIZID


    Please see the following link with information on using MicroSoft web servers which are using Host Headers

    I don't see my server type?


    If you do not see your specific server listed please send an email to support at ebizid.com and we will try to have it listed and help you with your installation Procedures for submitting your CSR's to EBIZID.

    Once you have generated your CSR you will need to submit this to us either in your order or after your order through a support request.

    Currently there are 2 ways to submit your CSR:

    Through the order form while placing your order During your order process you will be able to submit your CSR to us as well as the type of server.

    All clients should follow the below procedure if you have not entered the CSR in the order form.

    Through the support desk In the client administration center You may open a support desk account and submit your CSR in pasted format.

    Instructions:


    Open a new request Choose New "CSR for new order" (one that we have never received yet)
    Choose "RE-ISSUE Certificate" catagory if you are sumitting a CSR for a reissue of a current certificate order such as there was a mistake in your original CSR or you had trouble installing your certificate and have lost your pending request.

    PLEASE NOTE - You must choose the correct Catagory

    3. Please be sure to include the:
    Server Type
    Order Number



    VERY Important Information! Before logging a ticket or submitting your CSR please make sure that you have your order number or invoice number ready to enter in your ticket as well as all other required information in your ticket. This will help insure a timely response to your ticket, ALL tickets that are not completely filled out will be Deleted and Discarded without a Response.

    You can find your order number in the subject line of the email that you received with your certificate. You can find your Invoice number from either the billing system or the email that was sent with your order.

    Also if we have closed a ticket and you need furthur support for that SAME issue, Please do not create a NEW or Duplicate ticket, There is a REOPEN link on the page when you view closed requests.

    If you have a ticket open, please use that same ticket to respond back to the support department by a ADDING RESPONSE to the ticket, Please do not open a new ticket. DO NOT Reply to the email as your reply will not be received.

    Thank You for your Cooperation!