Generating an SSL Certificate Signing Request (CSR) from Command Line

Generating a Certificate Request (CSR) for your SSL order in cPanel is a relatively simple task (if you have cPanel, you can find directions for this process in the article Generating an SSL Certificate Signing Request (CSR) in cPanel). But if you have a Core-Managed or Self-Managed server, you’ll need a different process to generate your CSR. Fortunately, we’ve got you covered with instructions on generating a CSR from the Command Line.

1. Log in to your server’s terminal (SSH). If you need more information about using SSH, see Logging into Your Server via Secure Shell (SSH).
2. At the prompt, type the following command:

openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csr

3. Enter the requested information:

• Common Name: The fully-qualified domain name, or URL, you’re securing.
• If you are requesting a Wildcard certificate, add an asterisk (*) to the left of the common name where you want the wildcard, for example *.coolexample.com.
• Organization: The legally-registered name for your business. If you are enrolling as an individual, enter the certificate requestor’s name.
• Organization Unit: If applicable, enter the DBA (doing business as) name.
• City or Locality: Name of the city where your organization is registered/located. Do not abbreviate.
• State or Province: Name of the state or province where your organization is located. Do not abbreviate.
• Country: The two-letter International Organization for Standardization (ISO) format country code for where your organization is legally registered.

4. Open the CSR in a text editor and copy all of the text.
5. Paste the full CSR into the SSL order form of your choice. To order your SSL from Liquid Web, see Ordering an SSL Certificate