picture of tbs certificates
picture of tbs certificates
Our products range

Generate a CSR with Sonicwall

To generate a private key and a CSR, go to the System menu, then select Certificates. Click on New Signing Request. Then fill the form. Make sure the key size is at least 2048 bits.

  • CN: Common name / domain name / server name / FQDN:
    Indicate here your SSL server name, such as "", "" or "". No IP address (learn more). No spaces nor blank characters.

    In the case you want to order a multiple-domains / SANs certificate, just enter the main address in the CSR. This one cannot be change during your certificate lifetime. Enter the other address to secure in the order form (those ones can be modified via reissuance).

    N.B.: Using certificates with internal names (xxx.local, yyy.priv, machine_name) or a domain that is not registered or controlled by IANA is disapproved by the CA/Browsers Forum and won't be accepted anymore by November 2015 (learn more).

  • O: Organisation / Company Name:
    indicate the corporate name of your company (no trade name or acronym), in uppercase preferably.

  • ST: State:
    in France indicate the name of the department where your company headquarters are based (not the number).

  • L: Location / City:
    indicate the city where your company headquarters are based.

  • C: Country:
    indicate FR if your company is in France, BE for Belgium, etc, in uppercase preferably.

  • OU: Organisational unit / Department / Branch :
    We advise not to fill in this field or to enter a generic term such as "IT Department".

Leave any optional field empty, then click Generate.

Once the request is confirmed, the server will prompt you to download a zip file containing your private key (server.key) and your CSR (server.csr). It is absolutely necessary to securely keep the key as it will be required during the install.

See also