Certificate Signing Request (CSR) Generation Instructions for Mac OS X Server 10.6

Solution ID:    SO22542    Updated:    07/27/2016

Solution


This document provides instructions for generating a Certificate Signing Request on MAC OS X 10.6. If this document can not be used on the server, RapidSSL recommends that Apple be contacted.

 

Step 1:  Generate a Key and Certificate Signing Request:

  1. Launch  Applications > Server > Server Admin tool and connect to the server where you want to install the certificate.
  2. Double click the server name in the SERVERS list.
  3. Enter the password, click Connect
  4. From the toolbar select Certificates
  5. Click + (add) button
  6. Select Create a Certificate Identity to open Certificate Assistant:

    Name: Your certificate name (e.g. www.bbtest.net)
    Identity Type: Self Signed Root
    Certificate Type: SSL Server
     
  7. Override the defaults by selecting the option Let me override defaults, click Continue
  8. Changes to the Serial Number or Validity Period is not required, click Continue
  9. Enter the Certificate Information:

    Email Address - Including an email address is not recommended, it will not be included in the certificate if an email address is included in the CSR.  Please leave this field blank unless the server requires the field to be populated to continue.
    Common Name - The address for which you plan to use your certificate.  For example - www.bbtest.net or *.bbtest.net for a RapidSSL Wildcard
    Organization - The full legal name of your organization. The listed organization must be the legal registrant of the domain name in the certificate request.
    Organizational Unit - Name of a business unit or group. If applicable, you may enter the DBA (doing business as) name in this field.
    City (Locality) - Name of the city in which your organization is registered/located.  Do not abbreviate. Enter the full name of the city.
    State/Province - Name of state or province where your organization is located. Do not abbreviate. Enter the full name.
    Country - The two-letter International Organization for Standardization (ISO) format country code for the country in which your organization is legally registered.
     
  10. Click Continue
  11. Key Pair Information:

    Key Size - 2048 bits
    Algorithm - RSA
     
  12. Click Continue
  13. Proceed through the following screens, accept the defaults for each of the following:

    Key Usage Extension
    Extended Key Usage Extension
    Basic Constraints Extension
    Subject Alternative Name Extension
     
  14. After the last screen, the Certificate Assistant will save the Certificate and quit. You will be returned to Server Admin, and the self signed certificate should be displayed in the Certificates pane.  Select the new certificate.
  15. Below the certificate name, click the Action menu (looks like a gear) and choose Generate Certificate Signing Request (CSR).
  16. Click Save to save the CSR.
  17. Proceed with the Enrolment.  When prompted for the CSR use a plaintext editor to open and copy the full text of the CSR.

 

Step 2: Backup the private key
 
RapidSSL recommends backing up the .key file and storing of the corresponding pass phrase.  A good choice is to create a copy of this file onto a removable media.  While backing up the private key is not required, having one will be helpful in the instance of server failure.

Contact Information

During the verification process, RapidSSL may need to contact your organization. Be sure to provide an email address, phone number, and fax number that will be checked and responded to quickly. These fields are not part of the certificate.

Once the certificate has been issued, refer to this link for installation instructions.

Apple support

           For additional information please see the following Apple Support Article


 

Disclaimer:

RapidSSL has made efforts to ensure the accuracy and completeness of the information in this document. However, RapidSSL makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. RapidSSL assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document.  Further, RapidSSL assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. RapidSSL reserves the right to make changes to any information herein without further notice.

Contact Support

US Support:

Order Processing

Technical Support

European Support:

Order Processing

Technical Support

SSL digital certificates sales live chat.

Find Answers


Search Tips