FavoriteLoadingAdd to favorites

To generate a Certificate Signing Request (CSR) for Server 2016 – IIS 10 & 10.5 you will need to create a key pair for your server the public key and private key. These two items are a digital certificate key pair and cannot be separated. On Windows type systems like Microsoft Server 2016 – IIS 10 & 10.5 PFX/PKCS12 requests are made, and are stored on the system. The private key will remain hidden on the windows system where the CSR request is made.

To generate a CSR on Windows Server 2016 – IIS 10 & 10.5 perform the following.

Step 1: Generating your CSR:

  1. Choose Start > Administrative Tools > Internet Information Services (IIS) Manager.
  2. In the IIS Manager on the left, select your server name.
  3. In the Features pane (the middle pane), double-click the Server Certificates option located under the Security heading.

    IIS 8 & 8.5
  4. Click Create Certificate Request.

    IIS 8 & 8.5
  5. Specify the require information for each field.
    • Common Name: The Fully Qualified Domain Name that the certificate will be issued to and secure. for example www.yourdomain.com or if you are enrolling for a wildcard certficate *.yourdomain.com
    • Organization: The Registered Organisational Name the certificate belongs to.
    • Organizational Unit: The Department within the Organization.
    • City/locality: The Business registered location (not the actual server location).
    • State/province: The Business registered state or province (Do not abbreviate).
    • Country/region: The two letter ISO country code.IIS 8 & 8.5
  6. Click Next.
  7. Under Cryptographic service Provide. leave at default, Microsoft RSA SChannel Cryptographic  Provider.
  8. From the Bit Length drop down select 2048.
    IIS 8 & 8.5
  9. Select Next.
  10. Click the box with the 3 periods.

    IIS 8 & 8.5
  11. Specify a file name for the certificate request to a location and directory of your choosing.
  12. Click Finish.

Your CSR request has been created from your Server 2016 – IIS 10 & 10.5 system and is ready for you to copy and paste its contents into the enrollment portal.

If you are unable to use these instructions for your server, Acmetek recommends that you contact either the vendor of your software or the organization that supports it.

For installation instructions on how to install your SSL certificate once received from your CA visit our article Windows Server 2016 – IIS 10 & 10.5 Installation Instructions.

Windows Support
For more information refer to Microsoft

FavoriteLoadingAdd to favorites

About SSLSupportDesk:

SSLSupportDesk is part of Acmetek who is a trusted advisor of security solutions and services. They provide comprehensive security solutions that include Encryption & Authentication (SSL), Endpoint Protection, Multi-factor Authentication, PKI/Digital Signing Certificates, DDOS, WAF and Malware Removal. If you are looking for security look no further. Acmetek has it all covered!

Contact an SSL Specialist to get a consultation on the Website Security Solutions that can fit your needs.

Become a Partner and create additional revenue stream while the heavy lifting for you.