How to generate CSR (Certificate Signing Request) Code? Print

  • 0

This is the most critical technical guide in the CSR Code category. Since most Nixzoehost customers use cPanel, this article should focus on that workflow while providing a clear path for those using other systems.


How to Generate a CSR (Certificate Signing Request) Code

Generating a CSR is the first step toward securing your website with a paid SSL certificate. This process creates a "request" file that you provide to the Certificate Authority (CA) and a "Private Key" that stays on your server.

At Nixzoehost, the easiest way to do this is through your cPanel dashboard.


Step 1: Locate the SSL/TLS Manager

  1. Log in to your Nixzoehost cPanel account.

  2. Scroll down to the Security section and click on SSL/TLS.

  3. Under the Certificate Signing Requests (CSR) heading, click on "Generate, view, or delete SSL certificate signing requests."


Step 2: Fill in Your Information

You will see a form titled "Generate a New Certificate Signing Request." Accuracy is vital here, as this information will be embedded in your certificate.

  • Key: Select Generate a new 2048-bit key from the dropdown.

  • Domains: Enter the exact domain you want to secure (e.g., nixzoehost.com). If you are using a Wildcard SSL, enter *.nixzoehost.com.

  • City: Your full city name (do not use abbreviations).

  • State: Your full state or province name.

  • Country: Select your country from the dropdown list.

  • Company: The legal name of your business. If you don't have one, enter your name or "None."

  • Company Division: Your department (e.g., "IT" or "Web Support").

  • Email: An email address where the CA can reach you.

  • Passphrase: Leave this blank. Most modern Certificate Authorities do not require a passphrase, and adding one can cause installation errors later.


Step 3: Generate and Copy the Code

  1. Click the Generate button at the bottom of the page.

  2. cPanel will now display two very important blocks of text:

    • Encoded Certificate Signing Request: This is your CSR. It starts with -----BEGIN CERTIFICATE REQUEST-----.

    • Encoded Private Key: This is your Private Key. Do not lose this. cPanel saves it automatically, but it is the "secret half" of your SSL.

  3. Copy the entire CSR block (including the BEGIN and END lines) and paste it into the activation form in your Nixzoehost Client Area.


Important Rules for CSR Generation

  • No Special Characters: Avoid using symbols like @, #, !, or & in the company or division fields. These can cause the CA to reject your request.

  • The "Common Name" Rule: Ensure you are using the correct domain. If your SSL is for store.nixzoehost.com, you must enter exactly thatnot just the main domain.

  • Private Key Safety: If you delete the Private Key from the "Private Keys" section of cPanel after generating this CSR, the certificate you receive from the CA will be useless. You would then need to generate a new CSR and reissue the SSL.


Alternative: Generating via OpenSSL (Advanced)

If you are on a Nixzoehost VPS or Dedicated Server without cPanel, you can generate a CSR via the command line:

Bash
openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csr

Nixzoehost Support Tip: If you purchased your SSL certificate directly through our store, our Auto-SSL system may be able to handle this entire process for you! Check your "Service Details" in the client area to see if manual generation is required.


Was this answer helpful?

« Back