diff --git a/csr.ps1 b/csr.ps1
index ba3908a..81b7a23 100644
--- a/csr.ps1
+++ b/csr.ps1
@@ -1,7 +1,5 @@
-
 param(
     $rsa,
-    $domain,
     $hostnames
 )
 
@@ -17,13 +15,26 @@ if ($hostnames -eq $null) {
     $hostnames = read-host "Please enter Hostnames, no domain, to generate CSRs for"
 }
 
-if ($domain -eq $null) {
-    $domain = read-host "Please enter the domain (home|mgmt) to generate CSRs for [home]"
-    if ([string]::IsNullOrWhiteSpace($domain)){
-        $domain = "home"
-    }
-    $domain = "$domain.johnhgaunt.com"
-}
+$domain = "home.johnhgaunt.com"
+$subCA = "`n-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----"
 
 foreach ($hostname in $hostnames) {
 
@@ -90,6 +101,9 @@ foreach ($hostname in $hostnames) {
         # submit the created CSR
         certreq -submit -config "GauntDC01.home.johnhgaunt.com\GAUNTDC01-CA" -attrib "CertificateTemplate:ServerandClient(ECC)" $csrFile $crtFile
     }
+
+    # add the sub CA to the end of the cert
+    add-content $crtFile $subCA
     
 
     # remove temp files and dir