In order to generate a Certificate Signing Request file for a Key
Pair entry, in an opened KeyStore window, select that Key Pair entry and
invoke the contextual menu (usually by clicking the right mouse button).
In this contextual menu select
File. For generating a CSR file, you have to
the name of the generated file;
the algorithm to use for signing the request; this is
automatically adjusted based on the key algorithm used in the Key
DSA keys the possible selections are:
SHA512WithDSA, while for
RSA keys the possible selections are:
the challenge - the challenge-password attribute, which specifies a password by which the entity may later request certificate revocation.
The supported CSR formats are
PKCS #10 and
SPKAC (Signed Public Key and Challenge). These are selectable
from the file chooser filter list.