CSR is a certificate security request certificate request file. This document was produced by the applicant. At the same time, the system will generate two keys, one is the public key, that is, the CSR file, and the other is the private key, which is stored in the server. To make CSR files, applicants can refer to the documents of WEB SERVER, APACHE, etc. And use the OPENSSL command line to generate the KEY+CSR2 file. Tomcat, JBoss, Resin, etc. Use KEYTOOL to generate JKS and CSR files, and IIS creates a pending request and a CSR file through the wizard. In addition, you can also generate CSR online through the online generation tool provided by Wotong CA, or contact Wotong CA for help.
Second, CA certification
There are usually two authentication methods for submitting CSR to our employees:
1, domain name authentication, generally through the way of administrator mailbox authentication, this way of authentication is fast, but there is no enterprise name in the certificate issued;
2, enterprise document certification, need to provide the business license of the enterprise. It usually takes 3-5 working days.
Third, the installation of the certificate
After receiving the CA certificate we sent you, you can deploy the certificate to the server. Generally, the APACHE file directly copies the KEY+CER into the file, and then modifies the HTTPD. CONF file. TOMCAT and so on. , you need to import the certificate CER file issued by CA into JKS file, copy it to the server, and then modify the server. XML; IIS needs to handle pending requests and import CER files.