What is a CSR?

What is a CSR?

A CSR  is a block of encrypted text created on the server that will use an SSL certificate. 

The creation of a CSR is the first step in registering a SSL certificate. A CSR is a block of encrypted text that is created on the server that will use the certificate. It contains information that will be included in your certificate such as your organization name, common name or domain name, locality, and country.

It also contains the public key that will be included in your certificate. A private key is usually created at the same time that you create the CSR. A certificate authority (CA) will use the CSR to create your SSL certificate.

During the creation of the CSR, you will be prompted to provide certain information about your organization. The Web server software will use this information to create your Web server certificate's distinguished name (DN). Distinguished names uniquely identify individual servers.

After all of the necessary data is collected the CA will use this data to build the certificate. How a CSR is generated depends on the web server software used. Once the CSR is generated, it can be submitted to the CA. If the request is successfully validated, the CA will issue the SSL certificate.

The following information needed for a CSR:

  • Country Code: This two-letter International Organization for Standardization (ISO) format country code for the country in which an organization is legally registered.

  • State or Province: Name of state, province, region, or territory where an organization is located. Abbreviations should not be used, the full name must be entered.

  • City or Locality: Name of the city or locality in which your organization is registered or located. Abbreviations should not be used, the full name must be entered.

  • Organization: The legally registered of a business. The listed organization must be the legal registrant of the domain name in the certificate request. If a small business or sole proprietor is creating the certificate, the certificate requester's name should be entered in the "Organization" field, and the doing business as (DBA) name in the "Organizational Unit" field.

  • Organizational Unit: This field is used to differentiate between divisions within an organization. For example, "Engineering" or "Human Resources." If applicable, a DBA  can be entered in name in this field.

  • Common name: This field is for the (CN) of the business submitting the CSR and it must be the fully qualified domain name (FQDN) for the website using the certificate, for example, "www.example". The "http://" or "https://" prefixes should not be included in the common name nor should a personal name be entered in this field.


    For more information or sales inquiries, visit the Nexcess website or contact our Sales Team between 9 a.m. and 5 p.m. eastern time (ET), Monday - Friday.


Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
How to install SSL certificates in Nexcess Cloud
Added on Thu, Sep 13, 2018
How to purchase SSL certificates from your Client Portal
Added on Thu, Sep 13, 2018
How to manage SSL certificates for system services
Added on Wed, Apr 15, 2015
How to generate CSRs
Added on Thu, Jun 7, 2018
How to purchase an extended validation (EV) standard SSL certificate
Added on Mon, Dec 22, 2014
How to cancel a SSL certificate
Added on Wed, Oct 17, 2018
What is a multi-domain SSL certificate?
Added on Thu, Feb 5, 2015
How to set up Let’s Encrypt
Added on Wed, Mar 13, 2019
What is a chain of SSL certificates?
Added on Tue, Feb 24, 2015
What is a premium SSL certificate?
Added on Thu, Feb 5, 2015