Dutch
   Home
   Login
   Products
   Resellers
   Support
     Browerscompability
     Certificate Replacement
     Certificate Signing Request
     Manuals
       AEP
       Apache
       Apple
       Barracuda
       BEA
       C2Net
       Cisco
       Citrix
       Cobalt
       Courier
       cPanel
       Cyrus
       DirectAdmin
       DoveCot
       Ensim
       F5
       GlobalScape
       Google
       H-Sphere
       IBM
       Intel
       InterWorx
       Ipswitch
       ISPConfig
       Java
       Kerio
       Lighttpd
       Litespeed
       Lotus
       Mailtraq
       Microsoft
       NETASQ
       Netgear
       Netscreen
       NetWin
       Nortel
       Novell
         Novell ConsoleOne
           Generate CSR
           Install certificate
         Novell iChain
         Novell NetMail
       Open-Xchange
       OpenSSL
       Parallels
       Plesk
       qmail
       RedHat
       Sendmail
       SonicWall
       Sun
       SUN-Netscape
       Sybase
       Tomcat
       UW-IMAP
       WatchGuard
       WebSite Pro
       WebSTAR
       Zeus
       Zope
     Test your CSR
   About us
   Contact

Generating a Certificate Signing Request (CSR) using Novell ConsoleOne

  1. Make sure the ConsoleOne workstation is using the following:
    1. ConsoleOne 1.3.6 or higher
    2. Certificate Server snapin Version 2 (2.23 Build 34 or higher)
    3. Server NICI 2.6 or higher

  2. Open ConsoleOne. From the server's container create a new object - NDSPKI:KeyMaterial object.

  3. On the first Create Certificate dialog screen select the server this certificate will be tied to. Give it a descriptive name.

  4. For Creation Type choose Custom and select Next. On the specify Certificate Authority page select "External Certificate Authority" and select "Next".

  5. On the RSA key size screen accept the defaults of 2048 bits and allow private key to be exported then select "Next".

    NOTE: Selecting to allow the private key to be exported allows you to later export the keys into a PKCS#12 file for disaster recovery purposes.

  6. The next screen is the Certificate Parameters screen. Only modify the subject name here. This part is VERY IMPORTANT! The subject name is permanent. It should reflect the name or URL that will be used to access this server. If your community will access secure services on this server using the URL www .domain.com then that will be the "CN" part of the subject name. In our test, we will use www. testnovell.com. Select the "Edit" button next to Subject name then click on the 2 arrows to the right of it. This puts our server name at the beginning.

    For our example: use the following subject name 
    .CN=www.ssl.nu.O=Networking4all.L=Amsterdam.S=Noord-Holland.C=NL
    NOTE: You will need to make sure and include the O, L, S and C (Organisation, Location, State, Country) or else you will get an error requesting the SSL Certificate. The critical part is the CN=_____. As stated earlier, it must match the name that will be used to access the service that will be using the certificate. If the names do not match, you will always get a Security Alert warning each time the certificate is accessed.

  7. Also on the Certificate Parameters screen use the SHA1 algorithm (strongest authentication).

  8. Then select "Next" and "Finish". The keys will be generated.

  9. Select to save the CSR to the System clipboard in Base64 format and select "Save".




Thawte.nl is owned by Networking4all B.V.. The website is created by a collaboration with thawte Inc.. Apart from the strategic agreements that thawte Inc. and Networking4all B.V. have concluded, the organizations act independently. All prices are in euros and exclude VAT.