Nginx CSR Creation using OpenSSL
If you already have your SSL Certificate and just need to install it, see
Nginx SSL Certificate Installation.
How to generate a CSR for Nginx using OpenSSL
Recommended: Our OpenSSL CSR Wizard will help you generate an OpenSSL command to create your Nginx SSL CSR. Just fill in the form details, click Generate, and paste your customized OpenSSL command into your terminal.
If you prefer, you can make your own shell commands to generate your Nginx CSR. Just follow the instructions below:
Login to your server via your terminal client (ssh). At the prompt, type:
openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr
where server is the name of your server.
This will begin the process of generating two files: the Private-Key file for the decryption of your SSL Certificate, and a certificate signing request (CSR) file used to apply for your SSL Certificate.
When you are prompted for the Common Name (domain name), enter the fully qualified domain name for the site you are securing. If you are generating an Nginx CSR for a Wildcard SSL Certificate make sure your common name starts with an asterisk (e.g. *.example.com).
After that, you will be prompted for your organizational information, beginning with geographic information. There may be default information set already.
Your .csr file will then be created.
Open the CSR file with a text editor and copy and paste it (including the BEGIN and END tags) into the DigiCert Certificate order form.
Save (backup) the generated .key file as it will be required later when installing your SSL certificate in Nginx.
Generating an Nginx CSR for Issuance of an SSL Certificate with OpenSSL
How to generate an SSL Certificate Signing Request for your Nginx Web Server with OpenSSL