- Notes, cautions, and warnings
- Introduction
- Requirements and Architecture
- Pre-Installation Configuration
- Install or Upgrade/Migrate
- Post-Installation Configuration
- Administrative Tasks
- Ports
- SQL Server Best Practices
- Certificates
Use this procedure to generate a Certificate Signing Request (CSR) for the self-signed certificate created in Generate a New Key Pair and a Self-Signed Certificate.
Substitute the same value used previously for <certificatealias>:
keytool -certreq -sigalg SHA1withRSA -alias <certificate-alias> -keystore .\cacerts -file <csr-filename>
For example, keytool -certreq -sigalg SHA1withRSA -alias sslkey -keystore .\cacerts -file Dell.csr
The .csr file contains a BEGIN/END pair to use during the creation of the certificate on the CA.
Example .CSR File
Follow your organizational process for acquiring an SSL server certificate from a Certificate Authority. Send the contents of the <csr-filename> for signing.
There are several methods to request a valid certificate. An example method is shown in Example Method to Request a Certificate.
When the signed certificate is received, store it in a file.
As a best practice, back up this certificate in case an error occurs during the import process. This backup prevents having to start the process over.