To obtain an SSL certificate, CSR (Certificate Signing Request) must be generated. It is later provided to the CA (Certificate Authority) who is responsible to provide such SSL certificates. Such CSR must be generated on the server. CSR includes and stores information such as Country Name, Organization name, domain name, common name, email address, the public key, and so on.
Self Signed certificates are usually generated to run the website in the developing phase or test environment. It is simply generated by using OpenSSL or any other tool which is free to use.
In other cases, running the website or applications on a production environment, the certificate must be used and generated after verifying by the trusted CA.
In Linux, first, we must have to install tools like OpenSSL to generate Certificate Signing Request (CSR). Let’s see the command to install OpenSSL on Ubuntu 20.04.
$ sudo apt install openssl
To verify if OpenSSL is installed or not, you can run the following command:
$ sudo openssl -a
We can run the following command to generate a CSR and key which will be provided later to trusted CA.
$ sudo openssl req -new -newkey rsa:2048 -nodes -keyout test.com.key -out test.com.csr
Here,
new = new request
new-key rsa:2048 = create 2048-bit RSA key
nodes = It tells to not encrypt the key
keyout = It species filename to forward key on private key
Out = It specifies filename to write CSR to
After executing the above command, it will ask to provide the details such as Country Name, Organization name, domain name, common name, email address. Also, be sure your legally registered company name must be matched with the details you provide. It will be verified perfectly by the Certificate Authority before issuing the certificate.
Here is the output section after executing the above command, you need to put details on:
Now, you can list and view the contents of the file that you have created with the above commands:
$ ls
You can check and print the contents of the CSR with the following command:
$ cat test.com.csr
Now, you can use such a CSR file to apply for SSL certificates from a trusted CA.
With the above steps, you must have learned the process of creating a CSR file which is very necessary before applying for an SSL certificate from a Certificate Authority(CA). Thank you!
Karim Buzdar holds a degree in telecommunication engineering and holds several sysadmin certifications including CCNA RS, SCP, and ACE. As an IT engineer and technical author, he writes for various websites.
This article provides a guide to deploy ScyllaDB on Ubuntu VPS. What is ScyllaDB? ScyllaDB…
This article demonstrates how to harden security of VPS server and is intended for server…
In this blog post, we will guide you on how to install wget on Ubuntu…
Jan 27,2026 Xfwl4 - The roadmap for a Xfce Wayland Compositor We, the Xfce team…
This article provides a step-by-step how-to guide to deploy n8n on Ubuntu VPS. What is…
In July 2025, git received CVE-2025-48384, a high vulnerability allowing arbitrary code execution when cloning…