Description
Geotrust now offers the Symantec SSL Assistant to make it easy to generate a CSR and install a certificate for Microsoft IIS 7.0 servers running .NET 2.0 or higher. As an independent subsidiary of Symantec, Geotrust offers Symantec SSL Assistant as a benefit of our corporate relationship.
To generate a CSR for Microsoft IIS 7.0, perform the following steps:
NOTE: A key length of 1024 bit is the default, but Geotrust recommends the use of a 2048 bit key.
If the request is intended for an Extended Validation certificate or a certificate with a validity period beyond December 31, 2013, the 2048 bit key length will need to be selected.
- Choose Start > Administrative Tools > Internet Information Services (IIS) Manager
- In the IIS Manager, choose your server name
- In the Features pane (the middle pane), double-click the Server Certificates option located under the Security heading.
- To begin the process of requesting a new certificate, from the Actions pane, choose the Create Certificate Request option.
- The first screen of the wizard asks for details regarding the new site. The common name should match the fully-qualified domain name for the site. Otherwise, provide information about your site, making sure to spell out the name of your state and locality.
- Click Next to continue.
- The next screen of the wizard asks you to choose cryptography options. The default, Microsoft RSA SChannel Cryptography Provider is fine. Select 2048 bit length.
- Click Next to continue.
- Provide a filename to which to save the certificate request. You will need the contents of this file in the next step, so make sure you know where to find it.
- Go to the Geotrust Enrollment pages
- To copy and paste the information into the enrollment form, open the file in a text editor that does not add extra characters (Notepad or Vi are recommended).
