Back to website Login
There was a problem loading the comments.

How to Create a Certificate Signing Request (CSR) in IIS (All Versions)

Support Portal  »  Knowledgebase  »  Viewing Article
  Print

 

To secure your website with HTTPS, the first step is to create a Certificate Signing Request (CSR) in IIS. This request is submitted to a Certificate Authority (CA) to obtain an SSL certificate.

 

This guide applies to all modern versions of Internet Information Services, including IIS 7, IIS 8, IIS 10, and later.

🔧 Prerequisites

  • IIS installed on your Windows Server (any version).

  • Administrator access to the server.

  • You must control the domain you’re requesting the certificate for.

✅ Steps to Generate a CSR in IIS

  1. Open IIS Manager

    • Press the Windows key, type inetmgr, and hit Enter.

    • This opens Internet Information Services (IIS) Manager.

  2. Select the Server Node

    • In the Connections pane (left side), click the server name (not a specific website).

    • This shows server-level features.

  3. Open Server Certificates

    • In the Features View (middle panel), double-click Server Certificates.

  4. Start the CSR Wizard

    • In the Actions pane (right side), click Create Certificate Request…

  5. Enter Distinguished Name Information Complete the fields as follows:

    • Common Name: The domain to secure (e.g., www.example.com).

    • Organization: Full legal name of your business (no abbreviations or special characters).

    • Organizational Unit: Department managing the SSL (e.g., IT, Security).

    • City/Locality: Full city name (e.g., Los Angeles).

    • State/Province: Full state name (e.g., California).

    • Country/Region: Two-letter ISO country code (e.g., US).

  6. Click Next

  7. Configure Cryptographic Options

    • Cryptographic Provider: Leave as default (Microsoft RSA SChannel Cryptographic Provider).

    • Bit Length: Choose at least 2048 bits (recommended for security).

    • Click Next.

  8. Save the CSR File

    • Provide a file name and path where the CSR will be saved (e.g., C:\certs\mydomain.csr).

    • Use the Browse button ([...]) if preferred.

    • Click Finish.

📁 Next Steps

Your CSR file has now been generated. You’ll submit this file to your SSL provider (Certificate Authority) to request your certificate. After the CA issues your certificate, you’ll return to IIS to complete the installation.

🧠 Tips

  • Always choose a 2048-bit key length or higher.

  • Use the FQDN (fully qualified domain name) as the Common Name.

  • For wildcard SSLs, use an asterisk (*.example.com) as the Common Name.

  • Double-check spelling and format—CSRs can't be edited after submission.

 

Share via
Did you find this article useful?  

Related Articles

Categories

Tags

© Softsys Hosting