Many user might ask do I need to regenerate the CSR key when I need to renew my SSL certificate.
In many Apache server do allow you to install your SSL with your previous CSR key unless you have change the SSL information.
However, the following server is needed to regenerate the CSR key when you renew it,
– Microsoft IIS Server
– Java based server
– Tomcat based server
This article used to guide you on how to generate CSR(Certificate Signing Request) key from IIS7.
1. Select Start -> Administrative Tools -> Internet Information Services (IIS) Manager or run from Windows Run with command “inetmgr”.
2. In the IIS Manager, choose your server name.
3. In your Middle panel, select Server Certificate.
4. Select on the “Create Certificate Request option” in the right panel.
5. In the Wizard, enter your information like image above.
6. Next, remain the service provider and change the bit length to at least 2048. You are advise to select 2048 and above for better security.
7. Save your certificate.
As you know, you may easily force your site fully running SSL from your site but this will causing your site loading slowly as it is running encryption for your site.
Now, you may use the following script to apply your script to use SSL and you may apply this to your Page_Load function.
Dim strURL As String = Request.Url.ToString()
If Request.IsSecureConnection Then
If strURL.IndexOf("http:") > -1 Then
strURL = strURL.Replace("http:", "https:")
If strURL.IndexOf("https:") > -1 Then
strURL = strURL.Replace("https:", "http:")
When you submit your SSL enrollment process, you might get the error of ,
Country Code not valid
With the above error, you might not use the 2 digit country code with standard of ISO 3166.
The common mistake is using UK for England as known as United Kingdom, but you should use GB which Great Britain.
However, you may refer to the full 2 digit country code as URL below.
ISO 1366 Standard Country Code
Assumed that you will going to install OpenSSL and you wish to apply to your MySQL if you are using Windows Operating System.
1. Download OpenSSL from URL here.
2. Once installation done, add your bin folder of the OpenSSL to your Environment Variable.
3. Open command prompt.
4. Follow the command as below.
If you see the result return is “OpenSSL>”, that mean you have successfully installed.
5. Open the MySQL command and refer to the following line.
shell> md c:\newcerts
shell> cd c:\newcerts
6. Test your certificate.
shell> mysqld –defaults-file=$DIR/my.cnf &
SSL certificate always used to encrypted the data file and it is actually supported for database as well.
Today, I will guide you on how to create SSL for MySQL. With this article, I will use OpenSSL as an example.
Please refer to the following command line.
# Create clean environment
shell> rm -rf newcerts
shell> mkdir newcerts && cd newcerts
# Create CA certificate
shell> openssl genrsa 2048 > ca-key.pem
shell> openssl req -new -x509 -nodes -days 1000 \
-key ca-key.pem > ca-cert.pem
# Create server certificate
shell> openssl req -newkey rsa:2048 -days 1000 \
-nodes -keyout server-key.pem > server-req.pem
shell> openssl x509 -req -in server-req.pem -days 1000 \
-CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 > server-cert.pem
# Create client certificate
shell> openssl req -newkey rsa:2048 -days 1000 \
-nodes -keyout client-key.pem > client-req.pem
shell> openssl x509 -req -in client-req.pem -days 1000 \
-CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 > client-cert.pem
To create FTP Over SSL, you will need to have at least IIS 7.0 and above with IIS 7.0 installed.
You may refer to the URL as below on how to create IIS FTP.
To get FTP over SSL, you will need to install SSL Certificate on your Web Engine (IIS). To get the SSL Certificate, you may purchase the SSL from CA(Certificate authority), alternatively, you may install Self Signed SSL.
1. Click on the Server Certificates from your IIS 7.x. Continue reading Create IIS FTP Over SSL(FTPS)
Do you think the WordPress administrator login is secure enough? As a system administrator, I have received lots of report that hackers(bad user) always logged into their WordPress administrator page and modified their themes and make the WordPress page an under attack pages.
How could them make this done? With a Wi-Fi connection from HotSpot, PC that affected by Viruses, Trojan, etc. They could easily caused this problem.
However you can get the Secure Sockey Layer (SSL) Certificate to encrypted your administrator login. To get this done, you may buy SSL certificate from your hosting provider and force your WordPress back-end with SSL(https) page.
To get this done, open the wp-config.php from your WordPress file and enter the command below from last line.(actually any line will do)
Today, I’m about to guide you how to install the SSL key and it will a bit tricky compare to generate the SSL CSR key.
To install the SSL key through Shell, refer to the step as below.
1. Go to path /usr/share/ssl/certs.
$ [email protected][/]# cd /usr/share/ssl/certs
2. Check if the domain.com.csr and domain.com.cabundle existed, else create them and enter the code.
3. Go to path /usr/share/ssl/private.
$ [email protected][/]# cd /usr/share/ssl/private Continue reading Install SSL through Shell
SSL certificate is one of the digital encryption with full name of Secure Sockets Layer.
Many webmaster use SSL to encrypt their important information such as payment information, etc.
Before you proceed to create the CSR key for SSL, you need the information as below.
- Domain name of Certificate
- Country Code
- Company Name
- Company Division
- Email Address of the Certificate
- Password for the certificate
Run the following command from Shell. Continue reading Create SSL certificate in Shell