In order to activate an SSL certificate it is required to submit a CSR (Certificate Signing Request) on our website. The CSR is a block of code with encrypted information about your company and domain name.

To generate the CSR in WHM you need to:

  • Log in to your WHM account.
  • Find option Generate an SSL Certificate and Signing Request.

whm_csr_1.png

  • On the new page you will be requested to provide the information required for CSR generation.

Note: If you check the first box and enter your email address, the keys will be sent to the provided address after generation.

  • Key Size. Usually there are two options: 2048 and 4096. You can choose any of them. 2048 key size is considered secure nowadays, but if you wish to have a higher security level, 4096 key size is preferable. However, every doubling of key size slows down establishment of SSL/TLS session by 6-7 times. Additionally, a bigger key size increases load on your server’s CPU.

whm_csr_2.png

Important: It is mandatory to use only alphanumeric characters. Otherwise, there is a possibility that a Certificate Authority will reject the CSR and certificate activation will fail.

All the fields (except for the Passphrase) must be filled in.

  • Domains. Here, put the domain name you wish to secure. In case SSL should be issued for a subdomain, it is required to specify a domain’s subdomain as ‘sub1.yourdomain.com’. If you have a wildcard certificate, please put an asterisk with a dot in front of the domain name as ‘*.yourdomain.com’. If the CSR is generated for a Multi Domain certificate, you should specify the domain names one per line.

whm_csr_3.png

If you have a certificate with domain validation, it is not mandatory to specify Company Name and Company Division fields. However, do not leave the fields blank, just put there ‘NA’ instead.

whm_csr_4.png

It is not mandatory to specify the Passphrase. In fact it is not with the passphrase your Private Key will be encrypted, but with a challenge password. The Challenge password used to be a shared secret between a certificate applicant and a Certificate Authority. Nowadays challenge password is not required to have an SSL issued and can be considered as an obsolete feature.

  • Once you fill the required information in, click Create.

whm_csr_5.png

On the prompted page you will see three blocks of code.

  • Signing Request. Actually it is your CSR that you should submit during SSL activation on our website.
  • Certificate. It’s a self-signed certificate issued for your domain name which will be not used further. Eventually you will receive a trusted certificate issued for your domain name.

whm_csr_6.png

  • Private Key. The key that will be used for decoding during SSL/TLS handshake once the certificate is installed. Make sure that you save it properly as the Private Key will be required for installation of the certificate on the server.

whm_csr_7.png

That’s all, now you can proceed with SSL activation on our website.

Was this answer helpful? 0 Users Found This Useful (0 Votes)

Most Popular Articles

How to install SSL certificate on your site using Let's Encrypt SSL

To do this, follow the steps below: Log into your cPanel Navigate to the Security section...
Generating a CSR code on IIS7

CSR generation for the Internet Information Server v.7 (IIS7) should be done through Internet...
Installing an SSL Certificate on IIS 7

Both the SSL Certificate installation and the CSR code generation, on IIS 7, should be done using...
SNI technology

Starting from the cPanel version 11.38 and higher, we are able to use SNI. Server Name...
Generating a CSR using cPanel

Retro theme Please follow the instructions below to generate the CSR code in your cPanel...

Powered by WHMCompleteSolution