What Is a Certificate Signing Request (CSR)
This article explains what a Certificate Signing Request (CSR) is, why it is required for SSL certificate issuance, and when you need to generate one.
What is a CSR
A Certificate Signing Request (CSR) is an encoded file that contains your domain and organization details. It is generated on the server where the SSL certificate will be installed and submitted to a Certificate Authority (CA) during the SSL request process.
The CSR includes the following information:
- Domain name (Common Name)
- Organization name and department (if applicable)
- City, state/province, and country
- Public key
A Private Key is also generated together with the CSR. This Private Key remains on the server and is required when installing the SSL certificate. The Private Key must not be shared or disclosed to anyone for security.
Why is a CSR required
A CSR is required because it provides the Certificate Authority with the necessary information to issue your SSL certificate. It also ensures that the SSL certificate is paired with the correct Private Key on your server.
Without a valid CSR, the SSL certificate cannot be issued or installed properly.
When do you need to generate a CSR
The need to generate a CSR depends on where you purchase your SSL certificate and where your website is hosted.
- If you purchase the SSL certificate from us and your website is hosted on our server, the CSR will be generated on your behalf. You do not need to perform any additional steps.
- If you purchase the SSL certificate from another provider but your website is hosted on our server, you need to generate the CSR from your hosting control panel. Refer to the appropriate guide below based on your hosting environment:
- If your website is hosted from another provider and you want to purchase the SSL from us, you need to generate the CSR from your hosting provider.