Microsoft – Windows 2008 – IIS 7.0

To generate a CSR for Microsoft IIS 7.0, perform the following steps:

NOTE: A key length of 1024 bit is the default, but Geotrust recommends the use of a 2048 bit key.

If the request is intended for an Extended Validation certificate or a certificate with a validity period beyond December 31, 2013, the 2048 bit key length will need to be selected.

1. Choose Start > Administrative Tools > Internet Information Services (IIS) Manager
2. In the IIS Manager, choose your server name
3. In the Features pane (the middle pane), double-click the Server Certificates option located under the Security heading.

 
4. To begin the process of requesting a new certificate, from the Actions pane, choose the Create Certificate Request option.


5. The first screen of the wizard asks for details regarding the new site. The common name should match the fully-qualified domain name for the site. Otherwise, provide information about your site, making sure to spell out the name of your state and locality.


6. Click Next to continue.
7. The next screen of the wizard asks you to choose cryptography options. The default, Microsoft RSA SChannel Cryptography Provider is fine. Select 2048 bit length.

8. Click Next to continue.
9. Provide a filename to which to save the certificate request. You will need the contents of this file in the next step, so make sure you know where to find it.
10. Go to the Webway Enrollment pages
11. To copy and paste the information into the enrollment form, open the file in a text editor that does not add extra characters (Notepad or Vi are recommended).