If you need to configure an SSL certificate for an accelerated domain name, you must create a Certificate Signing Request (CSR) to apply for an SSL certificate from a certificate authority (CA). This topic describes how to create a CSR.
Background information
You can use the following methods to upload a custom SSL certificate. The differences
between the two methods are:
- Upload Custom Certificate (Certificate)You can create a private key and a CSR in the Alibaba Cloud Content Delivery Network (CDN) console, and use the CSR to apply for an SSL certificate from a CA. After the application is approved, upload the certificate to Alibaba Cloud CDN. If you use this method, your private key file is exposed to only Alibaba Cloud CDN. This method is more secure than the other method.Note After you create a CSR, you can download it in the Alibaba Cloud CDN console. However, you cannot download the private key in the console. If you need to download both the CSR and private key, create them by using tools other than the Alibaba Cloud CDN console. For more information,see How do I create a CSR file?
- Upload Custom Certificate (Certificate+Private Key)
You must obtain an SSL certificate and a private key file from a CA and then upload the certificate and the private key file to Alibaba Cloud CDN.