To generate a CSR for Microsoft IIS 7.0 perform the following steps:

To generate a CSR for Microsoft IIS 7.0 please follow these instructions. There are two ways to create an SSL for IIS 7.0 1. Use OpenSSL. Download OpenSSL then follow our guide. 2. IIS won’t create the CSR in sha256 format unless you do it manually, it defaults to a deprecated format.

Please follow the following steps to generate the CSR in Windows:

1. Select start on your toolbar. In the search bar type “Run”. In the pop-up that appears type MMC. This should bring up the Microsoft common Console Document or “certmgr.msc”.
2. In certmgr, select “File” in the tool bar and follow this path: Add / Remove Snap-In > Certificates > Add > Computer Account > Local Computer.
3. You will want to select Certificates then OK.
4. Open the “Personal” dropdown and right-click Certificates and follow this path: All Tasks > Advanced Operations > Create custom request then Next.
5. Now you’ll click “Proceed without enrollment policy” and Next again.
6. You want to select No Template CNG key and under the dropdown select PKCS #10. Once again select Next.
7. Click on “Details” then Properties > Click on the “Subject” tab.
8. You will need to select the following types on the dropdown on the left, add the value then add it to the right side:

Country (2 letter code): US

State (full name): Your State (or Province)

Locality (eg, city): Your City

Organization Name (eg, company): Your Company Name

Organizational Unit Name (eg, section): IT

Common Name (eg, YOUR domain name): yourdomain.com

Email: youremail@youremail.com

Alternative Names is optional

After you’re done click on the Private Key tab make sure the key size is 2048. Make the private key exportable, and select sha256 as the hash algorithm > select where you want to save it > select base 64 then Finish.