How to Generate a CSR for a Microsoft IIS 10 Web Server
Use the instructions on this page to use IIS 10 to create your certificate signing request (CSR) and then to install your SSL certificate on your Windows server 2016.
Using IIS 10 to create your CSR
• In the Windows start menu, type Internet Information Services (IIS) Manager and open it
• In Internet Information Services (IIS) Manager, in the Connections menu tree (left pane), locate and click the server name:
• On the server name Home page (center pane), in the IIS section, double-click Server Certificate
• On the Server Certificates page (center pane), in the Actions menu (right pane), click the Create Certificate Request… link:
• In the Request Certificate wizard, on the Distinguished Name Properties page, provide the information specified below and then click Next:
• Common name: Type the fully-qualified domain name (FQDN) (e.g., www.example.com)
• Organization: Type your company’s legally registered name (e.g., YourCompany, Inc.)
• Organizational unit: The name of your department within the organization. Frequently this entry will be listed as ‘IT’, ‘Web Security’, or is simply left blank
• City/locality: Type the city where your company is legally located
• State/Province: Type the state/province where your company is legally located
• Country: In the drop-down list, select the country where your company is legally located:
• On the Cryptographic Service Provider Properties page, provide the information below and then click Next
Cryptographic service provider: In the drop-down list, select Microsoft RSA SChannel Cryptographic Provider unless you have a need for a specific cryptographic provider.
Bit length: In the drop-down list select 2048, unless you have a specific reason for opting for larger bit length:
• On the File Name page, under Specify a file name for the certificate request, click the … box to browse to a location where you want to save your CSR.
Note: Remember the filename that you choose and the location to which you save your csr.txt file. If you just enter a filename without browsing to a location, your CSR will end up in C:\Windows\System32
• When you are done, click Finish
• Use a text editor (such as Notepad) to open the file. Then, copy the text, including the:
—–BEGIN NEW CERTIFICATE REQUEST—–
—–END NEW CERTIFICATE REQUEST—–
tags and paste it into the TRUSTZONE order form.
TRUSTZONE: Your partner in the digital era
For more than 16 years TRUSTZONE has been working to become a go-to place when you think of security. Our experience with PKI, SSL/TLS, and certificate management truly stands for something. More than 3,000 companies and more than 80% of the Danish banking sector is protected by TRUSTZONE certificates.
The solutions we offer cover all the bases and meet the requirements of all types of companies and organizations. What your business is bound to gain is a comprehensive selection of compatibility-optimized, fully scalable certificate products and solutions including, but not limited to renewal of the expired certificates as well as their monitoring that automates and facilitates the entire process.
Deciding on the SSL certificate that is the right fit for your business is no mean feat. The market is teeming with certificates of all sorts, and it is a daunting task to decide on one as it can bear consequences for your company or organization.
We guide you to navigate this jungle and get the right SSL/TLS certificate that shows your visitors that your website is trustworthy and authentic. One of our top solutions is certainly the SL360 that can help with SSL monitoring and renew SSL certificates in single click. In this day and age, equipping your company with the SSL/TLS certificates is the way to go as there is no better way of ensuring secure transactions, e-mail interactions and data handling.