IIS 7 SSL Certificate Installation
- Obtain private key and origin certificate pair
Create a certificate signing request in IIS and export it. Note that the instructions are for wildcard certificates but that you can specify any set of hostnames on your zone. Instead of exporting as .pfx, you should export as .pem.
- Copy the key and cert pair to the desktop of your origin server
- Open Internet Information Services (IIS) Manager and under Connections, select your server's hostname
In the Windows Start menu, click Administrative Tools, then Internet Information Services (IIS) Manager.
- In the IIS section of the center menu, double click the Server Certificates icon
- In the Actions menu, click Complete Certificate Request to open the Complete Certificate Request wizard
In the Complete Certificate Request wizard on the Specify Certificate Authority Response page under File name containing the certification authority’s response, click … to browse to the .cer certificate file that was copied to the desktop, select the file, and then click Open.
- In the Friendly name box, enter a friendly name for the certificate
The friendly name is not part of the certificate. Instead, it is used to identify the certificate.
- To finish installing the SSL Certificate to the server, click OK
- Assign or Bind the certificate to your website
In Internet Information Services (IIS) Manager under Connections, expand your server’s name, expand Sites, and then select the site that you want to secure with your SSL Certificate.
- In the Actions menu under Edit Site, click Bindings
In the Site Binding window, click Add
- In the Add Site Bindings window, enter the following information and then, click OK
Type In the dropdown list, select https IP Address In the dropdown list, select all unassigned Port Enter 443 SSL Certificate In the dropdown list, select the friendly name of the certificate you just installed
- Your Origin CA SSL certificate is now installed, and your website is configured to accept secure connections