Creating a Certificate Signing Request

Last Updated : Aug 07, 2023 |

About this task

A Certificate Signing Request (CSR) is used by a server to apply for an SSL/TLS certificate. Use this procedure to create a CSR using OpenSSL.

Note:

This procedure is a worked example that describes how to create a CSR using OpenSSL. You can also create a CSR by using other options.

Before you begin

Install openssl. For more information about how to install openssl, see http://openssl.org.

Procedure

Log on to the Microsoft Windows Server 2019 (Desktop Experience) for Omnichannel Provider (OCP).
Download a Windows version of OpenSSL to this Microsoft Windows Server 2019 (Desktop Experience).
Generate a private key using the OpenSSL genpkey command.

Generate a CSR for this key using the OpenSSL req command.

Sample CSR generation:

# generate the private key. This creates a 2048-bit RSA key, which is encrypted using AES-256.

# The -pass parameter passes in "testing" as the password - consult the OpenSSL documentation for other ways of doing this.

openssl genpkey -algorithm RSA -out mmdev1.key -aes-256-cbc -pass pass:testing -pkeyopt rsa_keygen_bits:2048 

# generate the CSR.
# The value of the -passin parameter MUST match the password for the private key.
# This generates a CSR called mmdev1.csr.

openssl req -new -in mmdev1.key -key mmdev1.key -passin pass:testing -out mmdev1.csr

Send Feedback

AVAYA DOCUMENTATION CENTER

No results found