SupraLink Solutions
Internet Solutions Provider
7527 Papineau Avenue
Montréal, Québec
Canada H2E 2G9
Telephone: 514.906.1536
Fax: 514.906.1738
Driving Directions: Link to Yahoo Maps
Microsoft Internet Information Server 5.0
Generate a Certificate Signing Request — CSR

Follow these instructions to generate a CSR for your Web site. When you have completed this process, click the Close button above to close this window and continue to the next step.

Please note that If you are renewing your certificate or your site is currently running a web server certificate please refer to Renewal Section of this document.

Please note that for Microsoft Windows NT4.0, you must have at least Service Pack 4.0 or higher and Microsoft Internet Explorer 5.0 or higher installed.

  1. Select the Internet Information Services Console within the Administrative Tools menu.
  2. Select the computer and web site (host) that you wish to secure. 
    Right click to select Properties.
  3. Select the Directory Security tab. 
  4. Select Server Certificate under Secure Communications.
  5. Click Next in the Welcome to the Web Server Certificate Wizard window.
  6. Select Create a new certificate, then Click Next.
  7. Select Prepare the request now, but send it later.
  8. At the Name and Security Settings screen, fill in the [friendly] name field for the new certificate. Select bit length. We recommend using 1024-bit length. Click Next.
  9. When creating a CSR you must follow these conventions. Enter the information to be displayed in the certificate. The following characters cannot be accepted: < > ~ ! @ # $ % ^ * / \ ( ) ? . , & 

     Distinguished
     Name Field    		  Explanation  Example
    Common Name The fully qualified domain name for your web server. This must be an exact match. If you intend to secure the URL https://www.supralink.com/,
    then your CSR's common name
    must be www.supralink.com.
    Organization The exact legal name of your organization. Do not abbreviate your organization name. SupraLink
    Organization Unit Section of the organization. Marketing
    City or Locality The city where your organization is legally located. Montréal
    State or Province The state or province where your organization is legally located. Cannot be abbreviated. Quebec
    Country The two-letter ISO abbreviation for your country. CA 

  10. Enter your Administrator Contact Information.
  11. Enter a path and file name for the CSR.
  12. Verify your request and then click Next.
  13. At the Completing the Web Server screen, select Finish. Please do not remove the pending request or the .crt file will not match and your certificate will not install.
  14. Select Finish.
  15. Submit your CSR to SupraLink - you will be asked to complete the agreement and the enrollment form as well. Please remember to back up your key pair file.

Renewals or Sites currently running SSL
The renewal request option within IIS 5.0 does not create a request in a PKCS10 format. This may be corrected with a future Service Pack. IIS 5.0 does not allow your site that is currently running SSL to generate a Certificate Signing Request  without removing the existing certificate. For most sites, this is not an option since your site will not be able to run a SSL session while your certificate is being processed. To obtain a certificate for your existing web site you will have to do the following. Please read and print these instructions before submitting your new certificate request.

  1. Leave your existing site that currently has the certificate installed alone.
  2. Create another virtual site within IIS. Please note that this does not have to be a functional site.
  3. Enter Properties for the newly created virtual site, then go to the Certificate Wizard to create a new certificate request. The information you enter on this certificate request should match exactly the information on your production certificate, since that is the existing certificate this new CSR will replace.
  4. Submit your CSR to SupraLink - you will be asked to complete the agreement and the enrollment form as well. Please remember to back up your key pair file.
  5. Wait for the new certificate file to be emailed to you. 
  6. Install this certificate into your new virtual site; follow the process the pending request by selecting the certificate file we sent you. Complete the installation of your new certificate into your virtual web site.
  7. Now delete the new virtual site!
  8. Go to your Production web site, enter Properties, and select Replace the current certificate - choose the new certificate from the list.
  9. Make sure you bind the web site to a unique IP address at Port 443, then Stop and then Start your web site. Your new certificate should be installed.
  10. When convenient, go into your MMC console (with Certificate snap-in added) and delete the old certificate.

Innovating Information Security
SupraLink, in partnership with GeoTrust, the leading provider of next generation information security services, delivers secure e-commerce transactions, identity verification and authentication solutions to the global web community. SupraLink ensures a new level of e-business security — your first step toward leveraging the full business potential of the Internet.