Application Delivery Management

Create a Certificate Signing Request (CSR)

December 31, 2023

Contributed by:

A Certificate Signing Request (CSR) is a block of encrypted text that is generated on the server on which the certificate will be used. It contains information that will be included in the certificate such as the name of your organization, common name (domain name), locality, and country.

To create a CSR using Citrix ADM:

In Citrix Application Delivery Management (ADM), navigate to Networks > SSL Dashboard.
Click any of the graphs to see the list of installed SSL certificates, and then select the certificate for which you want to create a CSR and select Create CSR from the Select Action list.
On the Create Certificate Signing Request (CSR) page, specify a name for the CSR.

Do one of the following:

Upload a key - Select the I have a Key option. To upload your key file, select either Local (your local machine) or Appliance (the key file must be present on the Citrix ADM virtual instance).
Create a key - Select the I do not have a Key option, and then specify the following parameters:


Encryption Algorithm	Type of key. For example, RSA.
Key File Name	Name for your file in which the RSA key is stored.
Key Size	Key size in bits.
Public Exponent Value	Choose either 3 or F4 from the drop-down list provided. This value is part of the cipher algorithm that is required to create your RSA key.
Key Format	Be default PEM is selected. PEM is the recommended key format for your SSL certificate.
PEM Encoding Algorithm	In the drop-down list, select the algorithm (DES or DES3) that you want to use to encrypt the generated RSA key. If you select this algorithm, you’ll need to provide a PEM Passphrase.
PEM Passphrase	If you’ve chosen the PEM Encoding Algorithm, enter a passphrase.
Confirm PEM Passphrase	Confirm your PEM passphrase.

Click Continue.
On the following page, provide more details.

Most fields have default values extracted from the subject of the selected certificate. The subject contains details such as the common name, organization name, state, and country.

In the Subject Alternative Name field, you can specify multiple values, such as domain names and IP addresses with a single certificate. The Subject Alternative names help you secure multiple domains with a single certificate.

Specify the domain names and IP addresses in the following format:
```
DNS:<Domain name>, IP:<IP address>

```
In this example, it secures 10.0.0.1 and www.example.com.

Review the fields and click Continue.

Note

Most CAs accept certificate submissions by email. The CA returns a valid certificate to the email address from which you submit the CSR.

The official version of this content is in English. Some of the Cloud Software Group documentation content is machine translated for your convenience only. Cloud Software Group has no control over machine-translated content, which may contain errors, inaccuracies or unsuitable language. No warranty of any kind, either expressed or implied, is made as to the accuracy, reliability, suitability, or correctness of any translations made from the English original into any other language, or that your Cloud Software Group product or service conforms to any machine translated content, and any warranty provided under the applicable end user license agreement or terms of service, or any other agreement with Cloud Software Group, that the product or service conforms with any documentation shall not apply to the extent that such documentation has been machine translated. Cloud Software Group will not be held responsible for any damage or issues that may arise from using machine-translated content.

Create a Certificate Signing Request (CSR)

December 31, 2023

Contributed by:

December 31, 2023

Contributed by:

Create a Certificate Signing Request (CSR)

In this article