What is a CSR?

What is a CSR?

A CSR  is a block of encrypted text created on the server that will use an SSL certificate. 

The creation of a CSR is the first step in registering a SSL certificate. A CSR is a block of encrypted text that is created on the server that will use the certificate. It contains information that will be included in your certificate such as your organization name, common name or domain name, locality, and country.

It also contains the public key that will be included in your certificate. A private key is usually created at the same time that you create the CSR. A certificate authority (CA) will use the CSR to create your SSL certificate.

During the creation of the CSR, you will be prompted to provide certain information about your organization. The Web server software will use this information to create your Web server certificate's distinguished name (DN). Distinguished names uniquely identify individual servers.

After all of the necessary data is collected the CA will use this data to build the certificate. How a CSR is generated depends on the web server software used. Once the CSR is generated, it can be submitted to the CA. If the request is successfully validated, the CA will issue the SSL certificate.

The following information needed for a CSR:

  • Country Code: This two-letter International Organization for Standardization (ISO) format country code for the country in which an organization is legally registered.

  • State or Province: Name of state, province, region, or territory where an organization is located. Abbreviations should not be used, the full name must be entered.

  • City or Locality: Name of the city or locality in which your organization is registered or located. Abbreviations should not be used, the full name must be entered.

  • Organization: The legally registered of a business. The listed organization must be the legal registrant of the domain name in the certificate request. If a small business or sole proprietor is creating the certificate, the certificate requester's name should be entered in the "Organization" field, and the doing business as (DBA) name in the "Organizational Unit" field.

  • Organizational Unit: This field is used to differentiate between divisions within an organization. For example, "Engineering" or "Human Resources." If applicable, a DBA  can be entered in name in this field.

  • Common name: This field is for the (CN) of the business submitting the CSR and it must be the fully qualified domain name (FQDN) for the website using the certificate, for example, "www.example". The "http://" or "https://" prefixes should not be included in the common name nor should a personal name be entered in this field.


    For more information or sales inquiries, visit the Nexcess website or contact our Sales Team between 9 a.m. and 5 p.m. eastern time (ET), Monday - Friday.


Article Rating (No Votes)
Rate this article
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
How to set up Let’s Encrypt
Added on Wed, Mar 13, 2019
What are the benefits of dedicated IP addresses?
Added on Tue, Jan 29, 2019
How to cancel a SSL certificate
Added on Wed, Oct 17, 2018
What is an extended validation (EV) multi-domain SSL certificate?
Added on Thu, Feb 5, 2015
How to rekey your SSL certificate
Added on Wed, Aug 15, 2018
How to install SSL certificates in SiteWorx
Added on Wed, Mar 13, 2019
How to purchase a wildcard SSL certificate
Added on Mon, Dec 17, 2018
What is a self-signed SSL certificate?
Added on Mon, May 18, 2015
What is a premium SSL certificate?
Added on Thu, Feb 5, 2015
What is a Wildcard SSL certificate?
Added on Tue, Feb 3, 2015