- Plesk Onyx for Linux
How to create CSR for SAN SSL certificate in Plesk
Such feature is not implemented in Plesk.
Take part in Product improvement by submitting a feature request on Plesk Uservoice portal.
Top-ranked suggestion are likely to be included in the next Plesk releases.
As a workaround CSR fro SAN certificate can be created using openssl utility:
Connect to the server via SSH.
Create a new directory:
# mkdir /root/cert
# cd /root/cert
Create a configuration file for openssl utility req.conf:
# touch req.conf
Open the file in editor and put the following content in the file:
distinguished_name = req_distinguished_name
req_extensions = v3_req
prompt = no
C = %country%
ST = %state%
L = %city%
O = %company name%
OU = %department%
CN = example.com
keyUsage = keyEncipherment, dataEncipherment
extendedKeyUsage = serverAuth
subjectAltName = @alt_names
DNS.1 = www.example.com
DNS.2 = example.com
DNS.3 = www.example1.com
DNS.4 = example1.com
Please verify that the [req_distinguished_name] section contains correct information.
In [alt_names] section add all the subject alternative names in format DNS.X = %domain_name%
Generate a CSR file certificate.csr and the key certificate.key for the certificate:
# openssl req -new -out certificate.csr -newkey rsa:2048 -nodes -sha256 -keyout certificate.key -config req.conf
to verify the CSR file run the command:
# openssl req -text -noout -verify -in certificate.csr