A CSR (Certificate Signing Request) creates a .csr file for each operational certificate. This file can be signed by a site
certificate.
Prerequisites: You have added operational certificates to the platform/station User Key Store.
- To open the platform/station certificate stores, do one of the following:
- Connect to your platform and double-click Certificate Management in the Nav Container View.
- In the Platform Nav tree, double-click Certificate Management.
- Connect to your station, expand and double-click CertManagerService.
- Select the operational certificate and click Cert Request.
The Certificate Request Info window opens.
- Confirm that the certificate properties are correct and click OK.
the system displays the
certManagement folder for you to choose the location to store the CSR.
The Alias for the certificate is used as the file name of the CSR.
- Use the default folder, or select a different folder in which to store the CSR and click Save.
The system displays, CSR generation complete.
- To finish, click OK.
NOTE: Once you create a CSR, do not delete the original certificate from which you created the CSR. Later in the process you will
import a signed certificate back into the User Key Store where its public key must match the private key of the original certificate. Creating a new certificate with the same name
does not generate the same key pair and results in errors when you try to import the signed certificate. If it is absolutely
necessary (for example, if the computer on which the certificate is stored is vulnerable), you may export the original certificate
with its private key and import it into the User Key Store when you receive the signed certificate. But, ideally, you should leave the original certificate in the User Key Store of the original secure host.