TEXAS A&M CERTIFICATE SERVICE TECHNOLOGY SERVICES

Certificate Signing Request (CSR)

A CSR is a file containing your SSL/TLS certificate information, including your public key. Generate your CSR, and then copy & paste the CSR data into the request form.

For generating a CSR, we advise using the operating system-agnostic tool Step CLI from Smallstep.

The CSR must be created from a 2048-bit or larger RSA key pair, or an ECC key pair.

Subject Alternative Name (SAN) certificates

  • For UCC or Multi-Domain SAN certificates the CSR you generate only needs to be for the single Common Name domain. Additional domains that you may require in the Subject Alternative Name will be added at the time of provisioning the certificate. Although the additional domains are not required to be included in the CSR, they should always be listed in the request.
  • While having the SAN field defined in the CSR is not a requirement, this can be submitted if desired.