To complete your online request form for an SSL, you need a Certificate Signing Request (CSR). Follow these instructions to generate a CSR for your website. After you generate your CSR, copy and paste it into the CSR field on the SSL certificate request page.
We recommend that you use a Multiple Domain Unified Communications Certificates (UCC) with your Microsoft® Exchange Server, since you probably need to secure more than just one domain name.
c— Two-letter country code of your organization's country of residence
l— Full name of your organization's locality or city
s— Full name of your organization's state or province
o— Your Organization's legally registered name (company or person's first and last name)
cn—The first/main Fully Qualified Domain Name (FQDN) to be secured that will always be visible in the certificate details
-domainname— The comma-separated list of additional domains that are included in your certificate and referred to as Subject Alternative Names (SANs). Deciding what SANs to use depends on the services you are running. You need to know how your server is configured to properly secure everything. But, depending on your configuration, consider adding the following SANs:
You don't need to request a new CSR each time you add or remove a SAN. Our SSL Management console allows you to manage SANs without generating new CSRs each time you want to add or remove a SAN.
-PrivateKeyExportable $true— Keep this command if you want to enable export of the requested certificate so you can import it into a client's computer or another server.
-path c:\certrequest.txt— The complete path and filename where the resulting CSR file is placed when generated. In this example, once the CSR is created, you will find it on the root of your C: Drive.
For more information, see Creating a Certificate or Certificate Request for TLS.
For more information on how to request a certificate in our online request form, see Request an SSL certificate.