How to generate a private key and a certificate signing request (CSR)?

Question

How to generate a private key and a certificate signing request (CSR) to get a SSL certificate for Jahia Cloud?

Answer

To generate a private key and a CSR, here is the command to execute:

openssl req -new -newkey rsa:2048 -sha256 -keyout private.key -out certificate_signing_request.csr -subj "/CN=test.example.com/emailAddress=security@example.com/C=US/ST=Kansas/L=Kansas City/O=Example/OU=IT/CN=test.example.com" -passout pass:"XXXXXXXXXX"

• CN: The common name / domain you want to use for your website
• emailAddress: The email address, usually one tight to your IT team or security department
• C: The country of your company
• ST: The state of your company
• L: The town of your company
• O: The name of your company
• OU: The organization unit, usually the name of the IT team or security department

Once this CSR generated, you have to provide it to your usual provider who will create a certificate.

Once this certificate received, you can install it directly on Jahia Cloud (cf this documentation).