To generate a Certificate Signing Request (CSR) in IIS Manager, adhere to these straightforward steps.
How to Generating a CSR in IIS 8 & 10
ជំហានទី 1
- Start Internet Information Services (IIS) Manager by pressing Win + R >> type “inetmgr” >> press បញ្ចូល.
- ចុចទ្វេដងលើប៊ូតុង Server Certificates រូបតំណាងនៅលើ ទំព័រដើម ទំព័រ។
- រុករកទៅ សកម្មភាព panel on the right side of the window and click on Create Certificate Request….
- នេះ Distinguished Name Properties បង្អួចនឹងបង្ហាញឡើង។
- The Distinguished Name Properties contains fields that should be filled in correctly to create a proper CSR:
- ឈ្មោះទូទៅ – a field for the fully qualified domain name (e.g. example.com or sub.example.com; *.example.com for a Wildcard SSL certificates) that you want to secure with the SSL certificate;
- អង្គការ - a company’s name should be specified in this field. If there is no company owner of a domain name, this field should be filled in with “NA";
- Organization unit - the specific company department in charge of SSL certificate issuance and installation. It could be “ អាយ" "សុវត្ថិភាព" ឬសាមញ្ញ "NA”. This field cannot be empty either;
- City/locality – a full city name should be specified here;
- State/province – a field for a state name or administrative region, depending on a particular country’s inner division. If there are no states or regions, this field can be filled in with a city name;
- ប្រទេស / តំបន់ – a 2-digit លេខកូដប្រទេស ពីបញ្ជីទម្លាក់ចុះ។
ជំហានទី 2
ចំណាំ! សម្រាប់ OV និង វិញ្ញាបនបត្រ EV, it is obligatory to specify a legal company name and an existing department in អង្គការ និង Organization unit fields as these types of certificates are intended for registered companies and imply a more advanced validation level.
ចំណាំ: All the fields should be filled in only with alphanumeric symbols and no special symbols are allowed (“&”, “/”, “^”, etc.)
Here is an example of how the Certificate Request details can look with the fields filled in. On the below screen, we use the “example.com” domain as an example Common name.
- Once all the fields are filled in, click the បន្ទាប់ ប៊ូតុង។
- The next screen, Cryptographic Service Provider Properties, features two parameters:
- Cryptographic Service Provider – this should be set to Microsoft RSA SChannel Cryptographic Provider.
- ប្រវែងប៊ីត – this drop-down menu allows you to choose the length of a key based on which CSR will be generated. In accordance with Comodo (now Sectigo) Certificate Authority restrictions, a key length must be at least 2048-bit or higher.
- After both the parameters are set, click បន្ទាប់.
- ក្នុង ឈ្មោះឯកសារ window you need to specify the file name that the newly generated CSR code will be saved under, as well as the location where the file will be stored. You can either type in the path to the field or use the ... button to browse the file system.
ចំណាំ! If you opt to type in the path to the file manually, please make sure that the directory where you are planning to save the file actually exists or was created *before* this step. If the path is referring to a non-existent folder, the system will show an error saying that the directory was not found.
- When the location and the filename are specified, click the បញ្ចប់ ប៊ូតុង។
- Now the CSR file has been saved to the computer. Open it with a text editor and use the CSR for SSL certificate ការធ្វើឱ្យសកម្ម.
The issued certificate should be installed according to the instructions in សៀវភៅណែនាំនេះ.