In this step-by-step tutorial, we will show you how to generate a CSR on Sentora.
Just follow the steps below:
Step 1. Log in to a terminal as the root user
Run the following command:
sudo -i
Step 2. Install the OpenSSL utility
If you don’t have the OpenSSL utility, install it via the following command:
Debian/Ubuntu:
apt-get update && apt-get install -y openssl
CentOS/RHEL/AlmaLinux:
yum install -y openssl
Step 3. Generate the Private Key + CSR with SANs
Run the following command:
openssl req -new -newkey rsa:2048 -nodes \
-keyout example.key \
-out example.csr \
-subj "/C=US/ST=New York/L=New York/O=Example LLC/CN=example.com" \
-addext "subjectAltName=DNS:example.com,DNS:www.example.com"
Replace every placeholder above with your real info:
- example.com: your actual domain
- YourState, YourCity, and Your Company LLC: your legal entity details
- example.key / example.csr: any filenames you want (just be consistent)
If you’re securing a wildcard, change the Common Name (CN) to *.example.com, and make sure to include the apex domain in the SAN list.
The OpenSSL utility will generate your CSR and private key files.
Step 6. Locate your CSR and private key files
To locate them in your working directory, run the command:
ls
Open the CSR file with any text editor of your choice such as Notepad, and copy its contents including the —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– tags into the corresponding box during the SSL order process.
Wait for the SSL Certificate to arrive in your inbox.
Save 10% on SSL Certificates when ordering from SSL Dragon today!
Fast issuance, strong encryption, 99.99% browser trust, dedicated support, and 25-day money-back guarantee. Coupon code: SAVE10


