A CSR must contain certain information, which will be explained in more detail below. Which information depends on the validation level of the certificate. You should enter the information of the organization the certificate is for, so not that of a holding, or information from a party performing the ICT and website administration on behalf of another. For certificates with Extended Validation, the WHOIS information needs to be identical to the information in the official registration of the organization:
Please consult our knowledgebase for manuals on creating a CSR.
|City/Town or Locality||The location of the organization, according to the official registration (D&B or the Yellow Pages).||Alkmaar|
|State/Province||The province where the organization is located, written out in full.||Noord-Holland|
|Organization||The organization name, including legal structure. Note the following:
The name of the department.
And not allowed is:*
|Marketing, IT, headquarters|
|Common Name||The to be protected host name / FQDN. For a wildcard certificate, please fill out an * ( asterisk) for the (sub) domain.
|Country Name||Two lettered (ISO) country code of the country where the organization is located.||UK or US|
|The email address of the server's administrator.|
|(Challenge) Password||This field (if present) should remain blank, otherwise the application will fail.|
|Extra Company Name||This field (if present) should remain blank.|
|Bit Length||Enter at least 2048 bits; smaller keys are for security reasons no longer supported.|
*These options were allowed for Sectigo certificates before December 15, 2019.
With the CSR you can request a certificate online.