I purchased an SSL from NameSilo. They said in order for me to get it installed with my domain, I need to get an CSR code from InfinityFree.
Thank you for your assistance.
Use this tool (by NameCheap):
4 Likes
From the SSL/TLS section in the control panel, you can find the “Generate Key/CSR” button. Like the button suggests: that generates a CSR for you.
You can use other tools to generate a private key and CSR too. But please make sure to generate a 2048 bit private key, because our panel doesn’t support bigger private keys.
5 Likes
I used the link that wackyblackie provided for the CSR generator. I pasted the Private Key that was generated into the textbox and click the upload button. Next, I pasted the certificate into the textbox and click the upload button. My website displays the message - Your connection is not private
Using the SSL Checker, I received the following message:
check - www . cobolcrusaders . com resolves to 185.27.134.109
check - Server Type: nginx
check - The certificate will expire in 364 days.
warning - The certificate is self-signed. Users will receive a warning when accessing this site unless the certificate is manually added as a trusted certificate to their web browser. You can fix this error by buying a trusted SSL certificate
warning - None of the common names in the certificate match the name that was entered (www . cobolcrusaders . com). You may receive an error when accessing this site in a web browser. Learn more about name mismatch errors.
Common name: cobolcrusaders . com
SANs: cobolcrusaders . com
Organization: COBOL Crusaders
Location: Plainview, New York, US
Valid from August 18, 2022 to August 18, 2023
Serial Number: 8df040a13be47fb1
Signature Algorithm: sha256WithRSAEncryption
Issuer: cobolcrusaders . com
I thought you were getting the certificate from NameSilo?
What you installed is a SelfSigned certificate. Browsers don’t trust them.
4 Likes
I purchased a Domain Name and a Positive SSL Certificate from NameSilo. Are they supposed to be sending me a file so that I can install it in the SSL area of this site?
Thank you for your assistance.
I have never bought a certificate since you can get them for free, but they should provide you with a certificate key and a private key.
3 Likes
In short: yes.
Normally, you send the CSR to the certificate vendor, the certificate vendor uses the information from the CSR to generate the certificate, and then sends the certificate back to you.
With these paid certificates, you should get an email with a zip file with a bunch of different files in them, which are the certificate files in different formats for different platforms.
In these various files, you want to look for the certificate text for your domain name. Either the email text itself or one of the attachments (usually with your domain in the file name) will have a single text block that starts with “— BEGIN CERTIFICATE ----” and ends with “— END CERTIFICATE —”. You only need your domain certificate, you can’t install the CA chain here.
If you’re not sure if you have the right text, you can copy a single certificate block (a file may contain multiple BEGIN/END CERTIFICATE blocks) into a tool like this one. If the resulting values contain your domain name, then you’ve got the right one.
When you’ve found the certificate block, you can upload it through the SSL/TLS section in the control panel.
6 Likes
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.