Frequently Asked Question
- Open Cmd prompt
- create directory c:\ssl
- create request.inf inside the folder just created.
- Populate the file with below information. Updating the subject info to reflect your info.
- Run the command certreq -new request.inf request.csr
- That will create a file called request.csr in the folder c:/ssl. this is the file you will use to request the ssl from you ssl provider.
;---- request.inf ----
[Version]
Signature="$Windows NT$"
[NewRequest]
Subject = "CN=example.com, C=US, L=Heltec, ST=Maine, O=NA"
KeySpec = 1
KeyLength = 2048
Exportable = TRUE
MachineKeySet = TRUE
SMIME = False
PrivateKeyArchive = FALSE
UserProtected = FALSE
UseExistingKeySet = FALSE
ProviderName = "Microsoft RSA SChannel Cryptographic Provider"
ProviderType = 12
RequestType = PKCS10
KeyUsage = 0xa0
HashAlgorithm = SHA256
[EnhancedKeyUsageExtension]
OID=1.3.6.1.5.5.7.3.1 ; this is for Server Authentication / Token Signing
OID=1.3.6.1.5.5.7.3.2 ; Client Authentication
;-----------------------