This guide will walk you through the steps to install an SSL certificate within a Microsoft IIS environment.
What You'll Need
- The private key file you created with a CSR
- The server certificate file
- The intermediate certificate (preferably in a .cer format)
- Use a tool such as openssl to convert the private key and server certificate files into a pkcs12 format.
An example of a command is:
openssl pkcs12 -export -out exported_cert_name.pfx -inkey private.key -in server.cerThis command incorporates your private key (private.key) and server certificate (server.cer) into an exported .pfx (exported_cert_name.pfx) file which is usable within IIS.
Server Certificate Installation
- Access your IIS environment, loading up IIS Manager. Once in IIS Manager, select your server in the dropdown list.
- Select Server Certificates.
- Right-click and select Import. Locate the .pfx file you created in the Creating a .pfx file step. Set Certificate Store to Web Hosting.
- Check the option Allow this certificate to be exported.
- The certificate should now appear in the list.
- Press Windows + R for the Run prompt. Enter certlm.msc and click OK.
- Navigate to Intermediate Certification Authorities > Certificates
- Right-click the folder. Under All Tasks, select Import. Note: You can import many kinds of certificates, including .cer files.
Applying the Certificate
- Return to IIS Manager. Under Sites, locate the website you are installing the SSL under.
- Under the Actions menu, select Bindings...
- Under the 443 Port, select Edit.
- Under SSL certificate, select the SSL the new SSL you wish to use. You can use View to confirm the certificate is valid.