Ask a Question

Advanced Search

Solution ID : SO2644

Last Modified : 05/02/2018

Generate a CSR for Java Web Server


Generate csr for Java Web Server
How to generate a CSR for Java Web Server
How do I generate a csr on a Java Web Server


To generate a CSR in Java Web Server follow the instructions below: 
  1. At the command line, go to the server root directory, and then change down to subdirectory bin. Run the command authstore. 
  2. Use the ImportCA button to import the Thawte CA root keys. The root certificate is located at the following link:
    After you install the CA Root you should shutdown your server and restart your workstation. 
  3. Now use the Create button to generate a self-signed certificate.
    Note: Default parameters are suggested for the first key generated. You will need to fill out following information:
  1. Fully qualified hostname
  2. The domain name of the server, for example,, as it will appear in the secure URL. It is important that what you put here is in the URL's that link to your server.
  3. Department  (Your department within your company, such as Marketing)
  4. Organization (Your full organization or company name)
  5. City (The city where your company is located, such as Redmond or Toronto)
  6. State or region (For example Washington, Alberta, California, and so on. Within the USA your two letter state code is adequate).
  7. Two letter country code (Two letter ISO Country designation, for example, US, CA, AU, UK, and so on. Make sure that both letters are in UPPER CASE) 
  1. You will need to provide a passphrase for use whenever you decrypt the data in the keystore. 
  2. Now use the Request button to generate a "Certificate Signing Request" (CSR). Take the CSR and submit it through our forms-based interface here. 
  3. Please take note of your passphrase and back up your new keys at <server-root>/keys. If you do not do this, you risk an extra fee if this key is lost, or cannot be accessed. 
  4. After your certificate is issued, get the certificate in "Standard Format", and use Import button in authstore to import this new certificate into your Java Web Server. Restart your server.  
Note: A key length of 1024 bit is the default, but Thawte recommends the use of a 2048 bit key.

Detailed instructions can be found at the following link : Java Web Server 2.0