18 Apr Step by Step PKI – Generate Certificate Request File in Windows IIS
PKI (Public Key Infrastructure) area is one of the most hard understanding topics in IT industry. I have been writing certificate related posts for years, but some people still comment back saying it is still not clear enough.
So a series of Step by Step guide is required in order to help people understand PKI better.
Let’s get started with Generate Certificate Request (.csr) file first
Windows IIS role needs to be installed
1. Open IIS, Start –> inetmgr
2. Select Computer (Server) name under “connections”, double click on “Server Certificates”
3. Select “Create Certificate Request…”
4. Fill in the certificate request information
<Issued to name will be shown on certificate>
|Organization||<can be anything>||RickyGao Pty Ltd|
|Organizational unit||<can be anything>||IT|
|City/locality||<can be anything>||Melbourne|
|State/province||<can be anything>||Victoria|
|Country/region||<can be anything>||Australia|
5. Choose “cryptographic service provider”
The default “Microsoft RSA SChannel Cryptographic Provider” is usually selected and more compatible.
2048 “Bit length” is now internet standard
6. Save the Certificate Request File (.csr) to local
Now, you have successfully generated a Certificate Request File (.csr) from Windows IIS.