How to establish a CSR for Cisco Secure Content Accelerators 11000?

To generate a CSR, you will need to create a key pair for your server. The CSR and Key Pair files can't be separated. If you lose your public/private key file or your password and generate a new one, your SSL Certificate will no longer match.

Create your private key

Via Telnet, copy and paste these command lines. This example creates a 2048 bits private key, DES encrypted using a passphrase and write the key to a FTP server.

sslone# config
(config[sslone])# ssl
(config-ssl[sslone])# key new_key create
config-ssl-key[new_key])# genrsa bits 2048 encrypt des output

Create your CSR

Issue the command gencsr key:

(config-ssl[sslone])# gencsr key new_key

Enter the requested details by following these instructions:

Domain Name – Must match the URL you plan to secure exactly – is usually your fully-qualified domain name, e.g., or Remember the www. Is important – include it if you want to secure & exclude it if you want to secure
Organisation - The legal (officially registered) name of your organization/company include Inc., LLP., Pvt, Plc. Ltd. SARL., etc
Organisational unit - The name of your department within the organization (this is often "IT," "Web," or is just left blank).
City/locality - The city or town in which your organization is located.
State/province - The state in which your organization is located.
Country - Click here for the official list of ISO country codes for this field.

Copy/paste the entire contents of the CSR displayed (including the BEGIN and END tags) into our order form.