In this tutorial, we will show you how to generate a CSR on IBM HTTP Server.
Table of Contents
- Generate a CSR Code on IBM HTTP Server
- Generate a CSR code on IBM Domino
Generate a CSR Code on IBM HTTP Server
To generate your CSR code and private key for the IBM HTTP server, we’ll use the IKEYMAN utility. Please, follow the steps below:
Step 1. Generate the Key Data Base (.kdb) file
- On your Windows system, go to Start > Programs > IBM HTTP Server > Start Key Management Utility
- From the Menu pane, choose Key Database File, then click New
- In the File Name field, enter a name for your new Key Database file
- In the Location field, specify the directory in which you wish to save the .kdb file
- Create a password for your Key Database file, the check the Stash the password to the file box
- Click OK.
Step 2. Generate the CSR code
- Open your newly created Key Database file using the IKEYMAN utility
- Locate the Key database content section, and click the down arrow to expand the list options, then select Personal Certificates Request
- Fill in the required info as shown below:
- Key Label: give your SSL cert an easy-to-remember name. For instance, your website’s name
- Key Size: 2048
- Common Name: enter the FQDN (fully-qualified domain name) you want to secure. For example, yourdomain.com
- Organization: specify the full, legal name of your company. For instance, GPI Holding LLC
- Organization unit: name the department managing your SSL Certificate. Usually, it’s IT or Web Administration
- Locality: write the full name of the city where your company is located. For example, San Diego
- State/Province: enter the full name of the state or region where your company is registered. For instance, California
- Country: type the two-letter code of your country. For example, US. Here you can find the full list of country codes.
- Certificate request file name: enter a name for the file, or use the default name
- Save the new .arm file in the same directory as the Key Database file
You can open your CSR file with any text editor including Notepad and copy-paste its contents during the SSL order process with your vendor.
Generate a CSR code on IBM Domino
- Log into your Domino Administration client and double-click on Server Certificate Administration
- Select Create Key Ring option
- If prompted, enter a name and password for your key ring. Next, choose 2048 bits for your key size
- Now, submit the following details:
- Common Name: your FQDN (fully-qualified domain name) to which you want to assign the SSL Certificate. For example, yourdomain.com
- Organization: the full, legal name of your organization (e.g., GPI Holding LLC)
- Organizational Unit: name the department requesting the SSL Certificate (e.g., It, Web Administration, etc.)
- City or Locality: provide the city where of your headquarters. For instance, Seattle
- State or Province: type the state where your company is located. For example, Washington
- Country: you can find the full list of country codes.
- Verify the info you’ve just entered, and click Continue to create your key ring file
- In the next window, select Create Certificate Request and, under Method, choose Paste intro form on CA’s site
That’s it. Now, you can copy and paste the CSR code, including the header and footer tags into your online SSL order on SSL Dragon’s website.