Certificate Signing Request | SSL Certificates | Globalsign.com
Certificate Signing Request (CSR) Instructions
Please select your Webserver from the list below or if you would prefer to use AutoCSR and not generate your own CSR please click here. Please note that the AutoCSR option is not supported by ExtendedSSL certificates.
Before you start the order for your SSL Certificates, you must create a CSR (Certificate Signing Request) on your server. A CSR is an encrypted body of text and will contain encoded information specific to your company and domain name.
All order placed from November 29th 2010 will only be accepted with a CSR key length of 2048 bits or higher.
For higher server security GlobalSign does not allow reusing private keys. You must create a new key pair.
For the CSR to be valid the following information needs to be entered in the following fields:
Country, State (or Province), Locality (or City), Organization, Organizational Unit, and Common Name.
Please note:
1.The Country is a two-digit code: For the United States, it's 'US'. For The United Kingdom, it's 'GB'. For other countries please check your Country Codes before creating the CSR.
2.State and Locality are full names, i.e. 'London', 'Florida'.
3.The Organization Name is your Full Legal Company as legally registered in your locality or Personal Name. For Companies, be sure to include the registration suffix, such as Ltd., Inc., or NV.
4.The Organizational Unit is whichever branch of your company is ordering the certificate such as accounting, marketing, etc.
5.The Common Name is the Fully Qualified Domain Name (FQDN) for which you are requesting the ssl certificate.
If you are generating a CSR for a Wildcard Certificate your common name must start with *. (for example: *.globalsign.com).
- Apache (OpenSSL)
- IIS 4
- IIS 5 & IIS 6
- IIS 7
- Microsoft Exchange 2003
- Microsoft Exchange 2007
- Microsoft Outlook Web Access
- Microsoft Office Communications Server 2007
- c2Net Stronghold
- Tomcat
- cPanel
- Cisco ASA
- Lotus Domino
- Plesk
- Plesk 10
- IBM HTTP
- Mirapoint
- Ensim Pro/3.x
- Cobalt RaQ4/XTR
- HSphere
- Weblogic BEA
- F5 FirePass
- F5 BIG IP
- Oracle Wallet Manager
- Zeus Web Server
- SAP Application Server
Remember, if you are generating a CSR for a Wildcard certificate, then you must use * (asterisk) where you want the sub-domain name to be, i.e. instead of www.globalsign.com you would write *.globalsign.com and instead of server1.mail.globalsign.com, you would write *.mail.domain.com, where * can be any name you want.
