|
Plesk Server Administrator
(CSR Generation Procedures) |
|
 |
 |
A CSR is a file containing your certificate
application information, including your Public Key. Generate
your CSR and then copy and paste the CSR file into the webform
during the order process.
| In order to use SSL certificates for a given domain,
the domain MUST be set-up for IP-Based hosting. If the
given domain has the www prefix enabled, you must set-up
your CSR with the www prefix included. If you do not, you
will receive a warning message when trying to access the
domain with the www prefix. |
All certificates are located in the ../vhosts/'domain name'/cert/httpsd.pem
file. Where this directory reads "domain name", you must enter
the domain name for which the certificate was created.
Access
the domain management function by clicking on the Domains button
at the top of the PSA interface.
The Domain List page appears.
Click the domain name that you want to secure with SSL.
The
Domain Administration page then appears.
If you have an IP
based hosting account with SSL support, the Certificate button
will be enabled.
If you have a name based hosting account the
Certificate button will be greyed out.
You must have an IP
based hosting account to continue.
Click the Certificate button.
The SSL certificate setup page appears.
The Certificate Information
section list asks for a number of fields to be completed
to generate your CSR.
The Bits selection allows you to choose the level of encryption
of your SSL certificate.
Select the appropriate number from
the drop down box next to Bits.
Enter your details into the
State or Province, Locality, Organization Name and Organization
Unit Name fields.
Enter your domain name into the Domain Name: field.
Click on the Request button.
Plesk will now email your CSR to the email address provided when you signed up.
You will see that the email contains two sections - the RSA Private Key and the
Certificate Signing Request.
Do not lose your RSA Private Key, you will need
this later.
Click Up Level to return to the Domain Administration page.
-----BEGIN CERTIFICATE REQUEST-----
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAU
AMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0
EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UEC
xMlU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9u
IEF1dGhvcml0eTAeFw0wMTA4MDIwMDAwMDBaFw0
wMzA4MDIyMzU5NTlaMIGQMQswCQYDVQQGEwJVUz
ERMA8GA1UECBMIVmlyZ2luaWExETAPBgNVBAcUC
FJpY2htb25kMSAwHgYDVQQKFBdDYXZhbGllciBU
ZWxlcGhvYm9uZGluZy5jYXZ0ZWwuY29tMIGfMA0
GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8x/1dxo
2YnblilQLmpiEziOqb7ArVfI1ymXo/MKcbKjnY2
-----END CERTIFICATE REQUEST----- 
When sending your CSR to EBIZID, you
MUST copy and paste the entire CSR Request, including the
beginning and ending lines as shown below.
-----BEGIN CERTIFICATE REQUEST-----
-----END CERTIFICATE REQUEST-----
Failure to do so will result in you having to resend your
CSR in the correct format to EBIZID which will cause a
prolonged delay in processing your order. |
| If you are ordering a Wildcard Certificate,
the Common Name field must be in the format of: *
. yourdomain . com |
| Backup the private key, as there is
no means to recover it should it be lost. The private key
is used as input in the command to generate a Certificate
Signing Request (CSR). EBIZID will reissue certificates
no more than 30 days from the time of purchase. If you
do not backup your key and your server fails or other problems
occur after the 30 days, you will then be required to purchase
a new certificate. An ounce of prevention is all that is
required to prevent this from happening. |
| Should you choose to enter and use a
Private Key password, you will need to make sure that you
save that password in a secure place. If you ever need
to reinstall your certificate for any reason, you will
be required to enter that password. If you forget the password
and it is past 30 days from your purchase date, then you
will be required to purchase a new certificate. An ounce
of prevention will prevent this from happening. |
|
|
