If you would prefer the manual option, please follow the steps:
- Generate CSR File and this can take up to 15 minutes.
- When the CSR file is ready, we need to Download CSR File.
- We need to submit the CSR file to your Certificate Authority (CA) when we purchase an SSL certificate for the domain. Please note:
- All SSL certificates you plan to use with NetSuite require:
- A 2048–bit RSA (private and public) key. 4096–bit key lengths are not supported.
- The private key must use the PKCS#1 RSA Cryptography Standard.
- Must be Apache-compatible and PEM-encoded.
- You are required to purchase SSL certificates that use the SHA-2 hash function or better. For more information, see Supported TLS Protocol and Cipher Suites.
- The following are not supported:
- Wildcard certificates
- Self-signed certificates
- ECC (Elliptic Curve Cryptography) SSL certificates
- Subject Alternative Name (SAN) fields on an SSL certificate (that is, adding multiple domain names to a single certificate). Only the Subject Name on a certificate is considered. In cases where SANs are specified on a certificate (using a subjectAltName field), they are ignored.
- All SSL certificates you plan to use with NetSuite require:
- Retrieve your certificates. After the CA notifies you that your SSL certificate is ready, you must retrieve your certificate files. This is something you do outside of NetSuite.
- Secure your domain using the SSL certificates. After you have retrieved your certificate files, link them to your domain to secure it.