MDaemon - CSR Generation

This manual is for Alt-N's MDaemon software. MDaemon does not have a method of creating a Certificate Signing Request (CSR), therefore you must generate a CSR via IIS Webserver or via the command line utility, certreq.exe. This manual will follow the steps to generate a CSR with the certreq.exe utility.

A Certificate Signing Request (CSR) is required when applying for an SSL certificate. This CSR (and private key) can be generated on your webserver. To request a wildcard certificate, fill in an * (asterisk) for the subdomain, for example *.sslcertificaten.nl (instead of www.sslcertificates.nl).

  1. Log into your mail server using an Administrator account.
  2. Create a file named CSRParameters.inf on the C:\ drive using the contents below as a template (Do not forget to change the information at the Subject line):
    [NewRequest] 
    Subject="CN=mail.xolphin.com,OU=Support,O=Xolphin,S=Noord-Holland,L=Heerhugowaard,C=NL"
    KeySpec=1
    KeyLength=2048
    Exportable=TRUE
    MachineKeySet=TRUE
    SMIME=False
    PrivateKeyArchive=FALSE
    UserProtected=FALSE
    UseExistingKeySet=FALSE
    ProviderName="Microsoft RSA SChannel Cryptographic Provider"
    ProviderType=12
    RequestType=PKCS10
    KeyUsage=0xa0
    Silent=TRUE
    [EnhancedKeyUsageExtension]
    OID=1.3.6.1.5.5.7.3.1
    
  3. Open a command prompt and change the directory to the C:\ path.
  4. Type in the following command: C:\>certreq -new CSRParameters.inf CSROutput.pem
  5. Open Windows Explorer and browse to the C:\ directory to locate the CSROutput.pem file.

To order a certificate, copy the entire contents of the generated CSR, including the first and last line and all dashes.

Order certficate

SSLCheck

Our SSLCheck will examine your website's root and intermediate certificates for correctness and report any potential issues