Generate A CSR
To generate a Certificate Signing Request (CSR), simply use the following command:
MY_SITE="www.domain.com" openssl req -new -newkey \ rsa:2048 \ -keyout $MY_SITE.key \ -out $MY_SITE.csr
Copy and paste the contents of the newly generated
.csr file into the web form and select "PKI" before entering the password you used to encrypt the CSR.
Now decrypt the private key file with:
MY_SITE="www.domain.com" openssl rsa \ -in $MY_SITE.key \ -out $MY_SITE.decrypted.key
Now download the certificate bundle from StartCom. You will need the certificates provided by the site, along with the decrypted file in your Apache/Nginx configuration.
First published: 16th August 2018