How to Generate Certificate Signing Request on Webstar 5.x
This article will go into detail on how to generate certificate signing request on Webstar 5.x.
Step 1: Generate a Private Key
- Start the 4D WebSTAR Admin Client and login to your WebSTAR 5 server.
- Select Generate Keys and CSRs from the Tools menu
- In the Name field enter the name for your private key file.
- In the Password field enter a password to protect your private key. Make sure that the password is at least 8 characters long, includes letters, numbers and punctuation, and is not a name or a word. Write the password down and store it in a secure place, such as a safety deposit box.
Do not forget this password! If you lose the password, you will not be able to use your SSL Certificate.
- Click the Generate Key button to generate your private key file. It will automatically be saved inside the Keys folder inside the SSL Tools folder of the folder containing your WebSTAR 5 installation.
Step 2: Create your Certificate Signing Request
- On the Generate Keys and CSRs window, fill in all the fields of the Generate Certificate Signing Request section with the appropriate information. Make sure that the Common Name you specify will be the actual domain name that you want to use your SSL certificate with.
- From the Key pulldown menu, choose the private key that you created during step 1.
- In the Password field enter the password you used to generate your private key.
- Click the Generate CSR button to generate your Certificate Signing Request.
- Copy the content of the Output (for Certificate Authority) field to a text editor and save it to your harddisk.
When asked to "Copy & Paste" your CSR into the CSR field during the order process, open the file you just saved with a text editor and copy and paste the content into the CSR field on the order form.
- Quit the 4D WebSTAR Admin Client.
------------------------------------------------------------------------
WebStar 5 requires a pem file certificate in order to function properly. First, you will need to get the certificates from the zip file which was sent to you or download them from the website. Unzip the files and open your server certificate (www_yourdomain_com.crt) in notepad or any other text editor. Next, open the root and intermediate certificates. Open each certificate file in your text editor and copy and paste the entire contents below the server certificate in this order: firstXYZSecurityServicesCA.crt certificate, then the GTECyberTrust certificate,. Save the file as yourdomain.pem.
------------------------------------------------------------------------
Webstar 5.x Installation
- Start the 4D WebSTAR Admin Client and login to your WebSTAR 5 server.
- Select SSL Configurations under Web Server.
- Click the New button.
- Enter a Name for your SSL configuration.
- Type the password that you used while generating your CSR.
- From the Key File pull down menu select the private key you made while generating your CSR.
- From the Certificate pull down menu select your certificate file (yourdomain.pem).
- Under Simple Chipers, select all encryption options, except MAC (no encryption) and IDEA-128.
- Click the Save button.
- Select Web Connections under Web Server.
- Click the New button.
- From the IP Address pull down menu select the corresponding server IP address to which your domain name, that you want to use the certificate with, points to.
- Set the Port field to 443.
- From the SSL Config pull down menu select your SSL configuration.
- Click the Save button and Restart your WebSTAR 5 server.