Personal tools

From HEXONET Wiki

Jump to: navigation, search
(Created page with "{{Sidebar}} <div style="font-size: 150%;">'''New SSL API - CSR creation'''</div><br/> <p> = Why create a CSR? = A CSR is required whenever you order an SSL certificate. You...")

Revision as of 10:53, 8 April 2016

New SSL API - CSR creation

Contents

Why create a CSR?

A CSR is required whenever you order an SSL certificate. You may create a CSR yourself and submit it in your order or leave this to us.

How does the automatic CSR creation work?

When you submit a CreateSSLCert command without providing a CSR (parameter CSR[0-N]), we will try to create the CSR for you. For this we require:

  • private key
  • domain
  • contact information

Private key

Unless you provide your own private key (parameter PEM[0-N]), we will create a new private key for you and use it to create the CSR. Of course, you will be able to download the private key later as you will need it in order to use the certificate.

Domain

The domain that is supposed to be the Common Name (CN) of the CSR needs to be provided (parameter DOMAIN0). If you provide further domains (DOMAIN1, DOMAIN2, ...), they will be placed into the Subject Alternative Name (SAN) extension of the CSR.

Contact information

If available, we will put the following contact information into the CSR:

  • organization name
  • street
  • city
  • state
  • country
  • email
The data of OWNERCONTACT0 will be used by default. If you want to put different contact information into the CSR, you may do so by using the parameter CSRCONTACT0.