How to Generate a CSR and Private Key for SSL Certificates Using OpenSSL
Posted by Aly Essa, Last modified by Aly Essa on 20 April 2018 02:45 PM


This article will give a quick walkthrough on the generation of a Certificate Signing Request (CSR) and Private Key file which will be used in FileCatalyst Server, Central, and HotFolder.


Windows OS


Install OpenSSL:

  1. Download the OpenSSL installer from one of the mirrors located at The example install directory referenced in this article is C:\OpenSSL\.

  2. Follow the installation wizard to complete the rest of the installation.

  3. Make sure that C:\OpenSSL\bin\ has been added to your Windows Environment PATH Variable. This will make the OpenSSL command accessible from the Command Prompt.


Create Certificate Signing Request (CSR) and Generate the RSA Key:

  1. Open a command prompt and navigate to the final destination of where you want the Private Key and CSR to be stored.

  2. Run the following command:

    openssl req -out  filecatalyst.csr -new -newkey rsa:2048 -nodes -keyout filecatalyst-private.key

    You will be prompted to enter some information about your company and on the final step, you will be asked to provide a challenge password. Please keep this between 6-8 characters as this will be the password you need to open your PEM container. If you are repurchasing your SSL Certificate we recommend using your old password.

    Your output should look like:

    The two files filecatalyst.csr and filecatalyst-private.key are now created:

  3. The Certificate Authority will request the CSR to process your SSL certificate purchase.

Note: The following characters can not be accepted: < > ~ ! @ # $ % ^ * / \ ( ) ?.,& as valid inputs.