CSR generation on Juniper Secure Access VPN

Step 1: Generating your CSR:

1. In the admin console, choose System > Configuration > Certificates > Device Certificates.
2. Click New CSR.

3. Under New Certificate Signing Request specify the required information:
• Common Name: The fully-qualified domain name, or URL, you’re securing. for example “www.domain.com”. If you are requesting a Wildcard certificate, add an asterisk (*) to the left of the common name where you want the wildcard, for example *.domain.com.
• Organization Name: If the company or department has an &, @, or any other symbol using the shift key in its name, the symbol must be spelled out or omitted, in order to enroll. Example: XY & Z Corporation would be XYZ Corporation or XY and Z Corporation.
• Organizational Unit: The Organizational Unit (OU) field is the name of the department or organization unit making the request. To skip the OU field, press Enter on the keyboard.
• Locality or City: The Locality field is the city or town name, for example: Boston. Do not abbreviate. For example: Saint Louis, not St. Louis
• State or Province: Spell out the state completely; do not abbreviate the state or province name, for example: Massachusetts
• Country Name: Use the two-letter code without punctuation for country, for example: US or CA.
4. Select 2048-bit.
5. Click Create CSR.

6. On the next page you will see that your CSR request has been created. Under Step 1 copy and paste its entire contents into the CA enrollment portal when prompted.