There are two ways to generate a CSR depending on which type of account you have and both methods are simple and straightforward.
Method 1: Shared Hosting Account (cPanel)
- Log into your cPanel account
- Under the "Security" section click on "SSL/TLS Manager". If for any reason this option is not listed in your cPanel please feel free to contact support and we'll update your account so that you have access to the SSL/TLS Manager.
- Under the heading "Private Keys (KEY)" click the link for "Generate, view, upload, or delete your private keys."
- Under the "Generate a New Private Key" header choose "2,048 bits" or "4,096 bits" - we recommend choosing "4,096 bits".
- We suggest entering some sort of description to identify the key in the "Description" box.
- Click "Generate".
- On the next screen that shows the generated Private Key, click "Return to SSL Manager" at the bottom.
- Under the heading "Certificate Signing Requests (CSR)" click the link for "Generate, view, or delete SSL certificate signing requests."
- Under the heading "Generate a New Certificate Signing Request (CSR)" select the Private key generated in steps 1 through 6. If you are not sure which key you generated you can safely use the "Generate a New 2,048-Bit Key" option.
- On the "Domains" line enter the domain that you wish to protect with SSL. For the domain "sample.com" you would want to enter "www.sample.com". If you do not enter the domain with the "www." at the beginning it will not work for "www.sample.com".
- Fill out the remainder of the form including name, email address, company name, etc and submit the form. Once submitted you will be provided with the CSR [Certificate Signing Request.]
Method 2: WHM (Web Host Manager) - Reseller, VPS, and Dedicated Customers
- Log into your WHM (http://www.yourdomain.com/whm).
- Select "Generate a SSL Certificate and Signing Request" under the "SSL/TLS" header. If for any reason you do not see this option please contact support and we'll upgrade your account so that you will have access to this feature.
- Fill the form out completely starting with checking the box for "When complete, email me the certificate, key, and CSR."
- For "Key Size" the system suggests a 2,048 bits, however, we suggest using 4,096 bits. Either will work fine, and the choice is up to you.
- For "Domains" you would want to enter your fully qualified domain name that you wish to have secured such as, "www.yourdomain.com", "secure.yourdomain.com", or even just "yourdomain.com". If you enter "yourdomain.com" without the "www." it will not be valid for "www.yourdomain.com".
- Continue filling out the form including Address, Company Name, Company Division, Email Address, Passphrase, and click "Create". You can leave the 'Passphrase' empty - it's not required.
- On the next screen you will be presented with a "Signing Request", "Certificate", and a "Key." The "Signing Request" is the "CSR" or "Certificate Signing Request" and the "Key" is required to install the SSL certificate to the server. You can safely disregard the "Certificate" as it's self-signed and will display a warning to visitors if used.