How to Generate a CSR on Sun Java System Web Server 7.x?

The first step to securing your Sun Java System Web Server 7.x with an SSL certificate is to create a Certificate Signing Request (CSR). A CSR contains the details about your organization and domain.

A Certificate Authority (CA) will use it to issue an SSL certificate for your server. The Sun Java System Web Server offers two options to create a CSR: either using the Server Certificate Wizard (GUI) or using the Keytool utility (CLI). Both options will be covered in this guide.

Prerequisites

Before starting, verify you have the following:

• Administrative access to the Sun Java System Web Server.
• A configuration or virtual server on which you have selected to have the certificate installed.
• A secure location in which to store the private key.
• Knowledge of your fully qualified domain name (FQDN), organization information, and location information.
• Optional: For Keytool, access to the server CLI and working Java KeyStore (.jks).

Steps to Create a CSR on Sun Java System Web Server 7.x

Method 1: Generating CSR using the Server Certificate Wizard (GUI)

Step 1: Open the Wizard

Log in to the Sun Java System Web Server Console and click the Server Certificates tab, then click Request to launch the Server Certificate Wizard.

Step 2: Select Configuration

Select the server configuration or virtual server for which you are generating the CSR. It can either be a domain name, hostname, or server name (i.e., localhost if generating for a LAN). Click Next.

Step 3: Set Token

Select the token (cryptographic device) for storing your private key. Select internal so that the private key is kept on the server. If you select anything else, it may block the successful installation of the certificate.

Step 4: Enter Certificate Information

You will be prompted to fill in each of the CSR fields. Please fill them out cautiously:

• Server Name (CN): The fully qualified domain name (e.g., www.example.com, mail.example.com, or *.example.com for a wildcard).
• Organization (O): Full legal name of your organization.
• Organizational Unit (OU): Department name – i.e., IT.
• Locality (L), State (ST), Country (C): City, state, and country of your organization.
• Alternative Server Names: If you are creating a SAN certificate, enter the additional domains here. If not, leave it blank.

Once all the information has been filled in correctly, click Next.

Step 5: Select Certificate Type

Choose a CA-signed certificate to create a request for a Certificate Authority. Click Next and then Finish to finish the wizard.

Step 6: Save the CSR

The wizard displays a Base64-encoded CSR. Copy the entire contents and submit them to your Certificate Authority when you are ordering the SSL certificate.

Method 2: Generate CSR using Keytool (CLI)

Step 1: Generate a Key Pair

Open the command line and run the following to generate a key pair in a Java KeyStore:

keytool -genkey -alias <keystore-alias> -keyalg RSA -keysize 2048 -keystore <keystore-name>.jks -storepass <keystore-password>

Replace few details with your values. Keytool will prompt for the CN, O, OU, L, ST, and C values.

Step 2: Generate the CSR

Once the key pair was created, run:

keytool -certreq -alias <keystore-alias> -file <your-csr-file>.csr -keystore <keystore-name>.jks

Type in your keystore password. This will generate a (your-csr-file).csr file that contains your CSR in Base64 format.

Step 3: Submit CSR to CA

Open the .csr file in a text editor and copy/paste the contents into your CA SSL certificate order process. After the CA approves, you can use the Keytool or the server installation steps to install your SSL certificate.

Conclusion

Get your website secured today with CheapSSLweb! Obtain affordable, trusted SSL certificates that deliver instant issuance and easy installation. Secure your visitors, improve your SEO rankings, and earn trust from your customers.

Go to CheapSSLweb and find the best SSL for your website to secure your online business while the cost is this low.