In ISPmanager 5, there is no way to generate the CSR from a wizard in the Control Panel. To generate the CSR, we need to use the command line.
Make a directory for the SSL certificate files
1.)login the server using ssh
2.)create a directory under /root
[root@server1 ~]# mkdir certs
[root@server1 ~]# cd certs/
Create the private key file required for generating the CSR
[root@server1 certs]# openssl genrsa -out www.yourdomain.com.key 2048
Please change the “www.yourdomain.com” to actual domain name
This will generate a file www.yourdomain.com.key in that directory
Generate the CSR using the private key file
[root@server1 certs]#openssl req -new -key www.yourdoman.com.key -out www.yourdomain.com.csr
When you run this command, you will be asked several questions such as
1.)The country code – the two-character code of the country where you live.
2.)State/Province – select an area or region.
3.)City – the city where you live.
4.)The company – the name of your organization. If you order a certificate for an individual, enter the domain name.
5.)Department – Select company department which is responsible for the order, such as IT or support.
6.)Domain Name – Select from the list required domain name.
7.)E-mail – specify the e-mail for receiving the notification certificate issue. It is desirable that this email is associated with the domain for which the certificate is ordered:
the mail address of the domain or e-mail, which is listed in the Whois database as administrative.
If you don’t have an answer to a certain question, just enter a period (.).
For the Challange password question, just press Enter.
This will create a .csr file. This is the file you will need to give to your SSL vendor so that they can create your SSL certificate.
To access this file, you can use the cat command to display the file on the screen where you can copy and paste it into a plain text file and give that to your SSL vendor.
After you deliver the CSR to your SSL vendor, they will create your SSL certificate and deliver that to you, usually in the form of several text files.
You can install the files for your SSL certificate from the Control Panel.
Login the ISPMANGER controll panel
Go to World Wide Web > SSL certificates and click on New in the upper right corner. This opens the New SSL certificate screen.
#Certificate name – this is a name to help you identify the SSL certificate, anyname can be set other than the name used by the ssl certificates.
#Certificate type – this has to be changed from self-signed to existing. This will change some of the options available in this screen.
#Use key – select the key that corresponds to the CSR that was generated for this SSL certificate from the drop down menu. This will remove the Private key section.
#Certificate – copy and paste the actual SSL certificate file text into this box, starting with —–BEGIN CERTIFICATE—– all the way to —–END CERTIFICATE—–. If you are not sure which of the files given to you is the actual SSL certificate, check with your vendor.
#Password – if you created a Challange password when creating the CSR, enter it here. Otherwise leave this blank.
#Certificate chain – some SSL vendors have a chain file that has to be installed. This is sometimes called an intermediate cert. If you have one, copy and paste it into this box. If not, leave this blank.
Once you have entered your information, click Ok. This takes you back to the SSL certificates screen, where you should see the new SSL certificate listed, with a Type of signed by chain.
After this you need enable the SSL certificate for the domain, for this
Go to World Wide Web > WWW domains, and click on the Name of the domain where you want to enable the SSL certificate, and then click Edit in the upper right.
under SSL certificate, pick the name of the SSL certificate you just installed from the drop down list, and click Ok. This will set the website to use the new SSL certificate.
Thats all ………:)