CSR GENERATION USING CISCO ASA 5510


FIRST, CREATE A KEY PAIR


1. Under ASDM, select Configuration then Device Management.

2. Next, select Certificate Management and then Identity Certificates.

3. Once on the Identity Certificates window, click the add icon and select “Add a new identity certificate.”

4. Then you must create the Key Pair by selecting New, and type in a new key pair name.

5. Next, create a unique key pair name for the certificate.

6. Choose the key size as 2048, and select Generate Now.

SECOND, GENERATE A CERTIFICATE SIGNING REQUEST (CSR) FILE


1. Press Select, and then choose Attributes.

2. Next, type in the Values listed below and press Add.

Country Name (C): Make sure to use the ISO code for your country without any punctuation.

State or Province (S): Type in the state or province where your organization is located. Refrain from using any abbreviations.

Locality or City (L): Type in the city where the organization is located.

Organization (O): Type in the name that is legally registered with the organization. Be aware that you cannot use special characters, so you must either spell out the character or omit it.

Organizational Unit (OU): This is the name of the department that will be using the CSR.

Common Name (CN): This represents the host and domain for the CSR. For example: “www.example.com” or “example.com.”

3. After all of the values are added, select OK then Advanced.

4. Once on the FQDN window, type in the FQDN that will be used.

TIP: Leave this field blank if this is for a Subject Alternative Name certificate. Also, this value must be the same FQDN that was used for the Domain Name or Common Name.

5. Next, select OK. Then, Add certificate and Browse.

6. Then, you must select a location to save the file.

7. It is very important to verify the CSR, and once you have uploaded the CSR to your order via your Account you are finished.

Back To Guides