Home > Network > SSL > openssl > opensslcsr | About
A CSR is a Certificate Signing Request, this is like a form you present to a Certificate Authority (or CA for short) to obtain a certificate signed by them. It has to include minimal information like your public key and the domain or domains you wish to obtain a certificate for. The Certificate Authority will present you with some challenges to make sure you really own the domain.
A CSR is obtained with the openssl req command
openssl req -new
If you already have a private/public key pair, supply your private key with the -key option
openssl req -new -key private.key
Don't forget to add the -out option if you don't want to copy/paste the certificate from the console to where it should belong
openssl req -new -key private.key -out form.csr
the openssl req
program will guide you through a series of questions to fill out your certificate request form and generate one for you.
contact : @ychaouche yacinechaouche at yahoocom