Dutch
   Home
   Login
   Products
   Resellers
   Support
     Browerscompability
     Certificate Replacement
     Certificate Signing Request
     Manuals
       AEP
       Apache
       Apple
       Barracuda
       BEA
       C2Net
       Cisco
       Citrix
       Cobalt
       Courier
       cPanel
       Cyrus
       DirectAdmin
       DoveCot
       Ensim
       F5
       GlobalScape
       Google
       H-Sphere
       IBM
       Intel
       InterWorx
       Ipswitch
       ISPConfig
       Java
       Kerio
       Lighttpd
       Litespeed
       Lotus
       Mailtraq
       Microsoft
       NETASQ
       Netgear
       Netscreen
       NetWin
       Nortel
       Novell
       Open-Xchange
       OpenSSL
       Parallels
       Plesk
       qmail
       RedHat
       Sendmail
       SonicWall
       Sun
       SUN-Netscape
       Sybase
       Tomcat
       UW-IMAP
       WatchGuard
         Firebox X Edge
           Generate CSR
           Install certificate
       WebSite Pro
       WebSTAR
       Zeus
       Zope
     Test your CSR
   About us
   Contact

Generating a CSR on FireBox X Edge

To generate a certificate signing request (CSR), you must have a public key from a key pair. A key pair is a set of mathematically related numbers that are used to send information safely. The private key is kept secret and used to encrypt data, while the public key is supplied to other users and used to “unlock” the encrypted data. Use a new key pair for each CSR you create.

You can use the OpenSSL application to generate a CSR on Windows or Linux through the command line interface. You can also use the Microsoft Certification Authority to generate a CSR on a Windows Server operating system as your own certficate authority.

Using OpenSSL to Generate a CSR

OpenSSL is installed with most GNU/Linux distributions. To download the source code or a Windows binary file, visit http://www.openssl.org/ and follow the installation instructions for your operating system.

  • Open a command line interface terminal.
  • Type: 
    openssl genrsa -out privkey.pem 2048
    to generate a private key file called privkey.pem in your current working directory.
  • Type: 
    openssl req -new -key privkey.pem -out request.csr
    This command generates a CSR in the PEM format in your current working directory.
  • When you are prompted for the x509 Common Name attribute information, type your fully-qualified domain name (FQDN). Use other information as appropriate.  

    Submit contents of CSR. Open the CSR file and copy the entire content including the dashed lines at the beginning and end. During the online purchase process you will be asked to paste the contents of the CSR file into a box and submit it with your order to Networking4all.

    To create a temporary, self-signed certificate until the CA returns your signed certificate, type openssl x509 -req -days 30 -in request.csr -key privkey.pem -out sscert.cert at a command line. This command creates a certificate that expires in 30 days inside your current directory. You cannot use a self-signed certificate for VPN authentication.


     

Using Microsoft Certification Authority to Create a Certificate

Certification Authority is distributed with Windows Server 2003 as a component. If the Certification Authority is not installed in the Administrative Tools folder of the Control Panel, follow the manufacturer’s instructions for installation.

When you use this procedure, you act as the certificate authority (CA) and digitally sign your own request. For the final certificate to be useful, connect your private CA to a widely trusted, third-party certificate authority. You can import these additional certificates through the Firebox X Edge Certificates page.

Submit contents of CSR. During the online purchase process you will be asked to copy-and-paste the contents of the CSR file into a box and submit it with your order to Networking4all.

 

 

Thawte.nl is owned by Networking4all B.V.. The website is created by a collaboration with thawte Inc.. Apart from the strategic agreements that thawte Inc. and Networking4all B.V. have concluded, the organizations act independently. All prices are in euros and exclude VAT.