Microsoft Server 2016 – IIS 10 & 10.5 – CSR Instructions

Microsoft Server 2016 - IIS 10 & 10.5 - CSR InstructionsTo generate a Certificate Signing Request (CSR) for Server 2016 – IIS 10 & 10.5 you will need to create a key pair for your server the public key and private key. These two items are a digital certificate key pair and cannot be separated. On Windows type systems like Microsoft Server 2016 – IIS 10 & 10.5 PFX/PKCS12 requests are made, and are stored on the system. The private key will remain hidden on the windows system where the CSR request is made.

To generate a CSR on Windows Server 2016 – IIS 10 & 10.5 perform the following.

Step 1: Generating your CSR:

  1. Choose Start > Administrative Tools > Internet Information Services (IIS) Manager.
  2. In the IIS Manager on the left, select your server name.
  3. In the Features pane (the middle pane), double-click the Server Certificates option located under the Security heading.

    IIS 8 & 8.5
  4. Click Create Certificate Request.

    IIS 8 & 8.5
  5. Specify the require information for each field.
    • Common Name: The Fully Qualified Domain Name that the certificate will be issued to and secure. for example www.yourdomain.com or if you are enrolling for a wildcard certficate *.yourdomain.com
    • Organization: The Registered Organisational Name the certificate belongs to.
    • Organizational Unit: The Department within the Organization.
    • City/locality: The Business registered location (not the actual server location).
    • State/province: The Business registered state or province (Do not abbreviate).
    • Country/region: The two letter ISO country code.IIS 8 & 8.5
  6. Click Next.
  7. Under Cryptographic service Provide. leave at default, Microsoft RSA SChannel Cryptographic  Provider.
  8. From the Bit Length drop down select 2048.
    IIS 8 & 8.5
  9. Select Next.
  10. Click the box with the 3 periods.

    IIS 8 & 8.5
  11. Specify a file name for the certificate request to a location and directory of your choosing.
  12. Click Finish.

Your CSR request has been created from your Server 2016 – IIS 10 & 10.5 system and is ready for you to copy and paste its contents into the enrollment portal.

If you are unable to use these instructions for your server, Acmetek recommends that you contact either the vendor of your software or the organization that supports it.

For installation instructions on how to install your SSL certificate once received from your CA visit our article Windows Server 2016 – IIS 10 & 10.5 Installation Instructions.

Windows Support
For more information refer to Microsoft

Recent Posts

S/MIME for Outlook O365 Windows

Add to Favorites S/MIME Advantages of S/MIME Certificates S/MIME (Secure/Multipurpose Internet Mail Extensions) certificates offer several advantages when it comes to securing email communications. Here

Read More »

Abbreviations

Add to Favorites There are literally thousands of IT abbreviations out there. Many are concerned with the technical aspects of the computer, while others deal

Read More »

SSL Installation on Qmail

Add to Favorites SSL Installation on Qmail Qmail is a secure, reliable, efficient, simple message transfer agent. It is designed for typical Internet-connected UNIX hosts.

Read More »