Generate a CSR in CPanel

A CSR is needed to obtain an SSL certificate. Below is a step-by-step guide on how to complete this process through cPanel.

Steps to Generate a CSR in cPanel

1. Log in to cPanel: To get started, you need to sign into your cPanel host.
2. Navigate to SSL/TLS: Please log in to your cPanel then in the panel, find Security category. Click on SSL/TLS.

On the right panel, you will find the Certificate Signing Requests option, and within that, clicking on the link that says generate, view or delete SSL certificate signing requests.

Nearby, below the “Continue” button, you will see many fields labeled “Required”, which is why, on the next page, you have to fill in the following fields. Always key in only the alphanumeric characters when filling the details.

1. Key*: One of the options is to choose the Generate a New 2048-bit key to create a new Private Key. In case a private key was previously created and supplied in an independent file, choose it from the drop-list.
2. Domains*: Type the FQDN that needs the SSL certificate to be activated on it for the SSL activation process to commence. If it is Wildcard certificates type, you should write the asterisk before the domain name (for example *.example.com). If creating CSR for multiple domains, include each domain in a new line.
3. City*: It is also important to give the full name of the city or locality where the event is taking place or is going to take place. Abbreviations are not allowed.
4. State*: You should give the complete name of the state or the province, or any of its equivalent.
5. Country*: Choose the country of issue of the company’s certificate from the drop-down list.
6. Company*: Please input the legally registered name of the business as the name would appear on the legal documents. If the company name has other types of characters other than the period or comma, check with the certificate authority if they are allowable.
7. Company Division: Indicate the submatrix at your company that you are working in or would prefer to work in. Once more, contact your CA to find out if the division name included anything other than a period or a comma.
8. Email: This should be a legitimate email address through which you will be contacted to authenticate the specified domain.
9. Passphrase (Optional): Some CAs may ask for a passphrase for CSR. It is used to verify the identity of a person or an organization that requires the certificate. What is important to remember is that CSR passphrases are stored and transmitted in plain text, so do not enter an important password there.
10. Description: In the description field, insert keywords that will help you scroll through the list and find the specific CSR you are searching for.
11. Fill in all the fields when they are ready and click the Generate button.
12. Now you can use the encoded Certificate Signing Request to complete the activation of the certificate.

Important Notes on Passphrase

1. A passphrase is a word which is used to protect the private key files, and which is not understood by any layman so that any layman cannot encrypt the files. But it is normally not configured with SSL certificates.
2. If a passphrase is used, the Apache Webserver cannot utilize the private key unless the passphrase is provided each time it happens to reload or reboot.
3. If the passphrase is stored in the filesystem, then it would not be very effective and thus there is a need to pass the passphrase to Apache by another means.
4. In this case, protection of the private key again relies on the security of the system and is only open to a superuser, which dramatically minimizes the risk of malicious use.

Note: You can also use this free CSR Generator Tool.

Conclusion

Follow this guide to generate a CSR in cPanel and secure your website with an SSL certificate. Ensure top-level protection for your site at an affordable price. Start now and safeguard your online presence today!