Lighttpd SSL Certificate CSR Creation using OpenSSL

If you already have your SSL Certificate and just need to install it, see
Lighttpd SSL Certificate Installation.

How to generate a CSR for Lighttpd using OpenSSL

Recommended: Use our OpenSSL CSR Wizard to create your Lighttpd SSL CSR. Just fill in the form details, click Generate, and paste your customized OpenSSL command into your terminal.

Preview of OpenSSL CSR Wizard

Of course, if you prefer, you can make your own shell commands to generate your Lighttpd CSR. Just follow our old instructions below:

  1. Login to your server via your terminal client (ssh). At the prompt, type:

    openssl CSR generation command

    openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr

    where server is the name of your server.

  2. This will begin the process of generating two files: the Private-Key file for the decryption of your SSL Certificate, and a certificate signing request (CSR) file used to apply for your SSL Certificate.

    When you are prompted for the Common Name (domain name), enter the fully qualified domain name for the site you are securing. If you are generating an Lighttpd CSR for a Wildcard SSL Certificate make sure your common name starts with an asterisk (e.g. *

    After that, you will be prompted for your organizational information, beginning with geographic information. There may be default information set already.

    Your .csr file will then be created.

  3. Open the CSR file with a text editor and copy and paste it (including the BEGIN and END tags) into the DigiCert Certificate order form.

  4. Save (backup) the generated .key file as it will be required later when installing your SSL certificate in Lighttpd.

  5. After you receive your SSL Certificate from DigiCert, you can install it.

    See Lighttpd SSL Certificate Installation.

Generating a Lighttpd CSR for Issuance of an SSL Certificate with OpenSSL

How to generate an SSL Certificate Signing Request for your Lighttpd Web Server with OpenSSL