Web Hosting Forum | Lunarpages


*
Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length
February 09, 2012, 09:13:51 PM

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Can a CSR (Certificate Signing request) be generated on a different computer?  (Read 3600 times)
magicmike
Newbie
*
Offline Offline

Posts: 3
« on: August 11, 2009, 07:14:00 PM »
Hello,

I am trying to find information on generating a Certificate Signing Request using openSSL.

I have found plenty of info on the actual generation of the CSR, I just need to know if the CSR needs to be created on the server that I'm hosted on (SSH into it and create it).
Or can I generate the CSR myself on my own private server.

I think what I'm trying to pin down is, does openSSL use it's host computer as part of creating the "unique" certificate?

Thanks for any help,
Mike
Logged
briensmith
Newbie
*
Offline Offline

Posts: 3
« Reply #1 on: June 12, 2011, 11:45:04 AM »
A CSR or Certificate Signing request is a block of encrypted text that is generated on the server that the certificate will be used on. It contains information that will be included in your certificate such as your organization name, common name (domain name), locality, and country. It also contains the public key that will be included in your certificate. A private key is usually created at the same time that you create the CSR.

A certificate authority will use a CSR to create your SSL certificate, but it does not need your private key. You need to keep your private key secret. What is a CSR and private key good for if someone else can potentially read your communications? The certificate created with a particular CSR will only work with the private key that was generated with it.

Thanks

Computer Repairs Brisbane
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: