Ask a Question

Advanced Search

Solution ID : SO6664

Last Modified : 06/12/2019

Certificate Signing Request (CSR) Generation Instructions for SonicWall SSL VPN Appliance


This document provides instructions for generating a Certificate Signing Request (CSR) for SonicWall SSL VPN Appliance. If you are unable to use these instructions for your server, Symantec recommends that you contact SonicWall.
NOTE: To generate a CSR, you will need to create a key pair for your server. These two items are a digital certificate key pair and cannot be separated. If you lose your public/private key file or your password and generate a new one, your SSL Certificate will no longer match.

To generate a Certificate Signing Request (CSR) on SonicWall SSL VPN Appliance, perform the following steps:

All certificates that will expire after October 2013 must have a 2048 bit key size.

  1. Navigate to the System > Certificates page.
  2. Click Generate CSR to generate a Certificate Signing Request and Certificate Key.
  3. The Generate Certificate Signing Request dialog box is displayed.
  4. Create a password to protect the key being generated. Please note this password as it will be used to install the private key generated locally on the appliance & issued Symantec SSL certificate
  5. Fill in the fields in the dialog box. To learn more about what fields are required when generating a valid CSR, refer to solution SO7289

  6. Click Submit
  7. If all information is entered correctly, a file will be created. Save this .zip file to disk.
  8. Open the file and copy contents of using a text editor such as Notepad.
  9. Verify your CSR
  10. Submit the CSR file as part of SSL certificate enrollment.   


          For more information refer to the SonicWALL SSL-VPN 2.5 Administrator's Guide  

Once the SSL certificate has been issued, follow the steps from this link to install it on the server: SO20363