How to install an SSL certificate?
Secure Sockets Layer certificates, commonly known as SSL certificates, are digital certificates used to establish an encrypted link between a web browser and web server. They validate the encryption of data transferred between websites and clients by authenticating the identity of a website.
If you run a website or business that requires a secure connection, an SSL certificate can help establish your credibility.
Here is how to install an SSL Certificate using Internet Information Services (IIS):
STEP 1: Request for Certificate Signing (CSR).
Your server must first generate a CSR to acquire and install an SSL certificate. This file has information about your server and public key. Here is how to create a CSR in IIS 8:
- Go to Server Manager, and select IIS Manager from the Tools menu.
- Select the workstation from the Connections list.
- Open the Server Certificates tool, and click the Create Certificate Request button in the upper right corner.
- Fill out your details, which include your two-digit country code, state/province, city/town, full firm name, section name (e.g., Sale or IT), and domain name.
- Retain the default “Cryptographic service provider.”
- Set “Bit length” = 2048
- Name the cert request file (it should be easy to remember).
STEP 2: Buy an SSL certificate.
Online SSL certificate services abound. Your and your customer’s safety is essential, so only use trusted services. Depending on your needs, you can buy the certificate, such as multiple certificates, enterprise solutions, etc.).
When ordering a certificate, you must upload your CSR file. This will be needed to create your server’s certificate. Some providers ask you to copy the CSR file’s contents, while others ask you to upload it.
STEP 3: Download your Certificates
You’ll receive your Primary Certificate via email or the website’s client area. You’ll need to download your certificates and rename them.
STEP 4: Reopen IIS’ Server Certificates tool.
Click the “Complete Certificate Request” link beneath the “Create Certificate Request” link.
STEP 5: Find the certificate file.
Once you’ve found it on your computer, give it an “easy to remember the name” so you can quickly recognize it on your server.
Keep the certificate in “Personal,” then click OK to install the cert.
Your certificate should be listed. If not, use the same server that generated the CSR.
STEP 6: Connect the certificate to your website
- After installing the certificate, you must associate it with the protected website.
- Extend the Connections list, then click the website.
- In the Actions list, click Bindings.
- In the Site Bindings window, click Add.
- “Type”: “https”, “SSL certificate”: “installed”:
- Press OK, then Close.
STEP 7: Install Intermediate Certs.
Locate the Intermediate Certificates from the certificate supplier (Some vendors provide many certificates, while others only provide one).
- Copy these certificates to a server folder.
- Double-click the certificate to display the Certificate Details.
- Go to the General tab. At the bottom of the window, click “Install Certificate.”
- Browse for the Local store and select “Place all certificates in this store.”
- Select Intermediate Certificates, then click Local Computer.
STEP 8: Reboot IIS.
Restart your IIS server to start distributing certificates.
- Click Start, then Run to restart IIS.
- Type “IISREset,” then press Enter.
- The Command Prompt will pop up and provide the IIS restart status.