Generation of certificate signing requests.

Make sure each worker that should have a CSR generated is selected.

Generate CSR

ColumnDescription
Signer

Name of the worker. Click the link to view the worker's page.

Key

Select or specify the name of the key for which the CSR should be generated.

If there are multiple known keys to choose from, select the option from the available drop-down list.

Click > to edit the alias manually, and then press < again when done.

Signature Algorithm

The signature algorithm to use when creating the signature in the CSR (proof-of-possession). 

By default, the signature algorithms can be selected from a drop-down list listing common algorithms. Note that some of these algorithms might not be supported by the crypto token used.

To specify a signature algorithm manually, click >.

Note that the algorithm must work with the key algorithm used (i.e. RSA or ECDSA).

Examples:

  • SHA256withRSA
  • SHA256withECDSA
DN

Subject DN to include in the CSR.

Certification Authorities might or might not use this information when creating the certificate.

Example:

  • CN=My PDF Signer,O=PrimeKey Solutions,C=SE
ResultAfter clicking the Generate button, this column shows a button for each worker to download the generated CSR file.

Format Options

Standard CSRCreates a normal PKCS#10 certificate signing request.
CSR signed by worker

Create a PKCS#10 certificate signing request that is encapsulated in a PKCS#7/CMS SignedData structure.

If selected, use the drop-down list to select the CMS signer that will sign the request.

Actions

ActionDescription
Generate

Performs the CSR generation for each selected worker.

The Result column will provide a download button for each CSR generated.

CancelReturns to the previous page.