Following the steps in this article will guide you through providing MangoApps the SSL certificate for your deployment. To acquire a digital SSL certificate from a Certification Authority (CA), a Certificate Signing Request (CSR) must first be generated. The CSR contains your certificate-application information, including your public key. You may want to consider creating a wildcard certificate. MangoApps can generate the CSR for you (recommended) or you can choose to generate the CSR on your own.

Providing an SSL certificate when MangoApps generates the CSR (Recommended)

1. Receive the CSR file that was generated with your information from MangoApps. To generate CSR for you, we need following information (this information is used while generating the CSR):

   • Common Name: The fully-qualified domain name, or URL, you’re securing.

     1. If you are requesting a Wildcard certificate, add an asterisk (*) to the left of the common name where you want the wildcard, for example: *.mycompanyname.com.

   • Organization: The legally-registered name for your business. If you are enrolling as an individual, enter the certificate requestor’s name.

   • Organization Unit: If applicable, enter the DBA (doing business as) name.

   • City or Locality: Name of the city where your organization is registered/located. Do not abbreviate.

   • State or Province: Name of the state or province where your organization is located. Do not abbreviate.

   • Country: The two-letter International Organization for Standardization (ISO) format country code for where your organization is legally registered.

   • IMPORTANT: Leave the “Passphrase” field blank so that NO PASSWORD is associated with this certificate.

2. Open the CSR in a text editor and copy all of the text.

3. Paste the full CSR into the SSL enrollment form in your CA account.

4. Provide MangoApps all of the resulting CRT certificate files that you receive from the CA. There may be multiple files including intermediate | chain certificates and your official SSL certificate.

Providing an SSL certificate when generating a CSR on your own (Optional)

Using OpenSSL, available on Linux, you can create a CSR for Apache 2.x. When you have completed generating your CSR, cut/copy and paste it into the CSR field on the SSL certificate-request page of your CA to generate your certificates to provide to MangoApps.

1. Log in to your server’s terminal via SSH.

2. Type the following command at the prompt:openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csrReplace yourdomain with the domain name you’re securing. For example, if your domain name is mycompanyname.com, you would type mycompanyname.key and mycompanyname.csr.

3. Enter the requested information:

   • Common Name: The fully-qualified domain name, or URL, you’re securing.

     1. If you are requesting a Wildcard certificate, add an asterisk (*) to the left of the common name where you want the wildcard, for example: *.mycompanyname.com.

   • Organization: The legally-registered name for your business. If you are enrolling as an individual, enter the certificate requestor’s name.

   • Organization Unit: If applicable, enter the DBA (doing business as) name.

   • City or Locality: Name of the city where your organization is registered/located. Do not abbreviate.

   • State or Province: Name of the state or province where your organization is located. Do not abbreviate.

   • Country: The two-letter International Organization for Standardization (ISO) format country code for where your organization is legally registered.

   • IMPORTANT: Leave the “Passphrase” field blank so that NO PASSWORD is associated with this certificate.

4. Open the CSR in a text editor and copy all of the text.

5. Paste the full CSR into the SSL enrollment form in your CA account.

6. Provide MangoApps all of the resulting certificate files that you receive from the CA. There may be multiple files including intermediate certificates and your official SSL certificate.