To make a certificate available to a Horizon server, you must create a configuration file, generate a certificate signing request (CSR) from the configuration file, and send the signing request to a CA. When the CA returns the certificate, you must import the signed certificate into the Windows local computer certificate store on the Horizon server host, where it joins the previously generated private key.
A CSR can be generated in several ways, depending on how the certificate itself will be generated.