AutoCSR File Unlock Code

When you submit an order for an SSL Certificate from Trustico® without providing your own Certificate Signing Request (CSR), the AutoCSR service generates a Certificate Signing Request (CSR) on your behalf.

AutoCSR is a convenient option that means you will not require technical knowledge to complete your SSL Certificate order as Trustico® handles the technical aspects for you. Learn About Certificate Signing Requests (CSR) 🔗

For your security, Trustico® delivers your Private Key in a password-protected archive file. The archive cannot be opened without the correct unlock code.

What You Need

To access your Private Key, you will need three things : the encrypted ZIP file delivered with your order confirmation, your unlock code available in your order details, and compatible ZIP software installed on your computer.

Your Private Key archive uses AES-256 encryption, the industry-standard encryption method that provides strong security for your Private Key file.

The file name inside the archive is visible, but the contents of your Private Key are encrypted and require your unlock code to access.

Accessing Your Unlock Code

Your unlock code is not included in fulfilment notifications for security reasons. Instead, you will find your unlock code within your order details in your customer account.

To retrieve your unlock code, log in to the Trustico® ordering system at account.trustico.com, navigate to your order history, and select the relevant order. If applicable, your unlock code will be displayed within the order status page.

Access your order details to retrieve your unlock code.

Compatible Software for Windows

Windows File Explorer cannot extract AES-256 encrypted archives. You can browse the contents but cannot view or extract the files. You must use 7-Zip or WinZip to extract your Private Key.

The recommended option for Windows users is 7-Zip, which is free and available from 7-zip.org. After installing 7-Zip, right-click the ZIP file, select 7-Zip, then Extract files, and enter your unlock code when prompted.

WinZip is an alternative paid option available from winzip.com. Only recent versions of WinZip support AES-256 encryption.

Compatible Software for macOS

The recommended option for macOS users is The Unarchiver, which is free and available from theunarchiver.com or the Mac App Store. After installing The Unarchiver, double-click the ZIP file and enter your unlock code when prompted.

Keka is an alternative free option available from keka.io. Drag and drop the ZIP file onto Keka and enter your unlock code when prompted.

Compatible Software for Linux

The standard Linux unzip command does not support AES-256 encryption. You must use 7-Zip (p7zip) or PeaZip to extract your Private Key.

The recommended option for Linux users is 7-Zip (p7zip), which can be installed via your package manager using the command sudo apt install p7zip-full. To extract the archive, use the command 7z x filename.zip and enter your unlock code when prompted.

PeaZip is an alternative free option available from peazip.github.io that provides a graphical interface for extracting encrypted archives.

Step-by-Step Instructions

Locate the encrypted ZIP file that was delivered with your order confirmation and save it to your computer.

Get your unlock code from your order details at account.trustico.com.

Install compatible software from the recommendations above if you do not already have it installed.

Extract the archive using the software and enter your unlock code when prompted.

Save your Private Key file in a secure location and create a backup.

Security Recommendations

Keep your unlock code secure and do not share it with anyone who does not require access to install your SSL Certificate.

Store your Private Key safely and back it up in a secure location that you control.

Delete the Private Key from temporary folders after securing it in your permanent storage location.

Troubleshooting

If you receive a "Cannot extract files" or "Wrong password" error, verify that you copied the unlock code exactly as it is case-sensitive. Ensure you are using compatible software such as 7-Zip, WinZip, The Unarchiver, or similar. Remember that Windows Explorer cannot extract AES-256 encrypted files and you must use 7-Zip instead.

If you receive an "Archive is corrupted" error, try a different extraction tool. If the problem persists and your archive file cannot be extracted, you will need to reissue your SSL Certificate to obtain a new Private Key. Trustico® does not retain copies of Private Keys after delivery.

If you cannot find your unlock code, visit account.trustico.com and log in with your account credentials. Locate your order number in your order history and the unlock code will be displayed in the order details.

If you have lost the archive file itself, you will need to reissue your SSL Certificate. Trustico® does not store your Private Key and cannot provide a replacement.

After Seven Days

For security reasons, the unlock code is generally only displayed for a limited time. After this period, reissuing your SSL Certificate will be required in most cases.

To streamline the installation process, timely action is required when initially placing an order. It is strongly recommended to obtain all installation files and credentials as soon as you receive a notification that they are available.

If you have lost access to your credentials and the seven-day window has passed, proceed to reissue your SSL Certificate with a new Certificate Signing Request (CSR).

Access the tracking system to reissue your SSL Certificate.

Your Certificate Authority (CA) Reference number is required to access the tracking system. Learn About Reissuing Your SSL Certificate 🔗

Why This Matters

The files generated during the Certificate Signing Request (CSR) process are fundamental to your SSL Certificate security. If the credentials protecting those files were to be compromised, your encrypted communications could be at risk.

The Trustico® delivery process is designed to ensure that only you have access to these sensitive materials.

This service is provided as a courtesy. If you lose access to your protected files, or are unable to obtain or unlock them, you will be required to generate a new Certificate Signing Request (CSR) and reissue using standard processes. Explore SSL Certificate Installation Instructions 🔗