Creating a Certificate Signing Request:
1. Install OpenSSL, if not found on server, and place it in PATH.
2. Create a key for your server by:
openssl genrsa -out /etc/ssl/private/mail.yourserver.com.key 1024
3. Create CSR:
openssl req -new -nodes -key /etc/ssl/private/mail.yourserver.com.key -out /etc/ssl/mail_yourserver_com.csr
4. When creating a CSR you must follow these conventions.
Enter the information to be displayed in the certificate.
The following characters are not accepted: < > ~ ! @ # $ % ^ * / ( ) ?.,&
Wildcard certificates must start with *. characters
5. Submit your CSR to IPSCA.