Wait! Don't Leave Without Securing Your Site
Get enterprise - grade SSL certificates at a fraction of retail prices.
Save 10% on your first order, by entering coupon code SAVE10 during checkout.
FAQs
All
Business Validation
Certificate Authorities
Changes
Code Signing
Configuration
CPAC
CSR Code
CSR Decoder
CSR Generation Tutorials
CSR Generator
DigiCert
Domain Validation
Extended Validation
General
Install SSL Certificates
Installation
IP Address
LEI
Multi Domain
Payments
Private Key
Renewal
S/MIME
Types
Updates
Wildcard
What information the CSR must contain?
The CSR must contain the following mandatory encrypted information: your Country, State, City/Town, Name of the company, Department from your company, and the Domain name or IP address that you want the SSL Certificate to be issued for.
It may also contain this optional information: the email address where your CSR code and the Private Key will be sent to once they are both generated.
To avoid any errors, please make sure that:
- You DO NOT enter “http://” or “https://” along with your domain name as a common name when generating the CSR. Please enter only “www.domain.com” or “domain.com” as a common name. Also, make sure you don’t have any extra spaces before or after your domain name.
- When generating the CSR code you were given a CSR code and a Private Key. Make sure that you only enter the CSR code in the SSL Configuration form. DO NOT enter the Private Key, but save it and keep it in a safe location on your computer or email, because you will need it when installing the SSL Certificate on your website/server.
- The CSR that you enter in the SSL Configuration form should include the following two lines: “—–BEGIN CERTIFICATE REQUEST—–” header and “—–END CERTIFICATE REQUEST—–” footer.
- For Wildcard SSL Certificates – When generating the CSR code for a Wildcard SSL Certificate, you have to include an asterisk and dot (*.) before your domain name. In other words, you should fill in *.yourdomain.com as a common name in your CSR.
- For Multi-Domain Wildcard SSL Certificates – Any Multi-Domain Wildcard SSL Certificate should start with a non-Wildcard domain. This means that you need to generate the CSR for a single domain – example.com – without any asterisk sign “*.”. Please read more in this FAQ.
- For IP Address SSL Certificates – For Sectigo InstantSSL Premium, the common name should be your IP address. For GoGetSSL Public IP SAN SSL Certificate, you will be asked to generate a CSR with NO Common Name. Here is how to do it.
- Your CSR is not configured for the following countries:
- AF – AF – Afghanistan
- BY – BLR – The Republic of Belarus
- CU – CUB – Cuba
- ER – ERI – Eritrea
- GN – GIN – Guinea
- IR – IRN – Iran, Islamic Republic of
- KP – PRK – Korea, Democratic People’s Republic of
- LR – LBR – Liberia
- RU – RUS – The Russian Federation
- SS – SSD – South Sudan
- SY – SYR – Syrian Arab Republic
- ZW – ZWE – Zimbabwe
Copy Link
Where can I find my Private Key?
This is one of the most frequent questions that we get. Unfortunately we cannot send you the Private Key, because it is private, and we do not store it anywhere in our system or database. The Private Key is always confidential, and it is only you who should have it. If we were to have or store your Private Key, this would compromise the “security” of your SSL Certificate.
If you used the CSR Generator on our website to generate your CSR code, then the CSR and the Private Key were both shown to you during the CSR generation process. They were also sent to your email address in case you included your email address in the CSR Generator. The message that was sent to your email address came from [email protected] and has the following subject: “Your CSR code and your Private Key”.
If you generated your CSR on your server, then your CSR code and your Private Key were both provided to you by your server. You had to copy and store them in a safe place. In some cases, some servers may show the CSR code and the Private Key, and at the same time store both these pieces of code for you on the server. In other cases, the server only provides you the CSR code and keeps the Private Key hidden on the server.
This being said, please look for the Private Key in your email address or your server. If you cannot find it, then you will have to generate a new CSR code on your server, or on the CSR Generator on our website. The CSR code will come with a Private Key.
Once a new CSR code (and Private Key) were generated, you will have to go to the SSL Certificate details page inside your SSL Dragon account, and click on the “Reissue certificate” button from the left side bar on the page. You will have to pass the domain validation again, and once you do that, the SSL Certificate will be re-issued to you based on the new CSR code that you entered. Also, the re-issued SSL Certificate will pair with the Private Key which came along with the new CSR code.
If you cannot find the “Reissue certificate” button on the SSL Certificate details page inside your SSL Dragon account, then please send us the new CSR code via a Support Ticket inside your SSL Dragon account, or directly at [email protected] and we will re-generate the SSL Certificate for you, using the new CSR code. Please do not send us your Private Key so as it is confidential. Store it in a safe place in your email or computer, so as you will need it when installing your SSL Certificate.
Copy Link
What if I lost my CSR or Private Key?
In order to prevent the situation when you lose your CSR code and Private Key, we automatically send them to the email which you provided when using the SSL CSR Generator from above. Please check your email, and look for a message from SSL Dragon ([email protected]).
However, if you lost or cannot find the email message from us, and you did not save a copy of your CSR code and Private Key, then you will not be able to apply for an SSL Certificate, and you will not be able to install your SSL Certificate on your website and server. But, that is easy to solve by generating a new CSR code and a new Private Key by using the SSL CSR Generator from above.
Copy Link
How to get an LEI number?
LEI number registration is a four-step process:
- Choose the LEI plan that suits your budget
- Complete our intuitive LEI application form
- Submit your LEI form and payment
- Wait for the LEI code to arrive by e-mail.
Copy Link
What happens when an LEI number expires?
You must renew your LEI code annually to keep the LEI status ACTIVE. Failure to do so will display your LEI as LAPSED in the Global Lei Index. An expired LEI may incur non-compliance fines and block financial transactions.
Copy Link
Do you offer a money back guarantee?
We guarantee a 100% refund only for non-issued LEI codes. If the LEI code is issued and the user cancels it, there will be NO refund. Please note we do not guarantee a refund if the information provided during entity verification is fake and wrong.
Copy Link
How can I renew my LEI code?
To renew your LEI code, log into your LEI account and select the renewal option. Submit the details of the legal entity which needs to be renewed, including the LEI Code. Wait for a renewal confirmation.
Copy Link
How long does it take to get an LEI?
Estimated LEI registration time varies by country. Applicants from Australia, the US, the UK, and European Union should receive the LEI code less than an hour after applying. For other countries, LEI processing may take between 1 and 36 hours.
Copy Link
How long does it take to apply for an LEI?
The LEI online registration should take a few minutes, provided you have all the required information and documents. Preparing the required data and paperwork varies from company to company.
Copy Link
What are the LEI registration requirements?
Here are the LEI number registration requirements:
- Entity’s Legal name.
- Registered address.
- Address of headquarters.
- Registration number and governing authority.
- Entity type.
- Parent company relationship information.
Copy Link