Archive

How to install an SSL certificate on IIS 10

SSL installation in IIS 10 requires one certificate file with the .p7b (or .cer) file extension. You may either download the issued certificate in the email delivered by Comodo (now Sectigo) or download it in your SSLs.com account following these instructions.

In order to install the certificate, please follow the steps below.

  1. Press Win + R and type “inetmgr” in the appeared window to run the Internet Information Services (IIS) Manager.
  2. On the IIS Manager home page, locate the “Server Certificates” icon and double-click it:
  3. Locate the “Actions” panel on the right side and click “Complete Certificate Request”:

4. In the “Specify Certificate Authority Response” window, perform the actions below.

a) In the “File name containing the certification authority’s response” field, browse the file system to select your .p7b (or .cer) certificate.
b) In the “Friendly name” field, specify any name that will help you to identify the certificate among other files. It is best to submit the actual domain name of the certificate.
c) In the “Select a certificate store for the new certificate” field, leave the default value “Personal”.

5. Click “OK” to import the certificate to the server storage.

6. Once the import is completed, in the “Server Certificates” window, you will see a new entry associated with the imported certificate:

7. Assign the certificate to your website by expanding the “Sites” subsection in the “Connections” menu on the left and select the corresponding site. Then, in the “Actions” panel on the right side, locate the “Edit Site” menu and select the “Bindings” option:

8. On the right side of the “Site Bindings” window, click “Add”:

9. In the “Add Site Binding” window, modify the fields as below:

a) In the “Type” field, select “https”.

b) In the “IP address” field, select your website’s IP address or “All Unassigned”.

c) In the “Port” field, specify “443” (default).

d) In the “SSL certificate” field, select the previously imported certificate, which can be identified by the friendly name:

NOTE: The “Require Server Name Indication” box needs to be checked if there are multiple SSL certificates on the server.

10. Click “OK” in order for the new “https” entry to appear in the “Site Bindings” window:

That’s all – the certificate should now be installed and the website should be accessible via HTTPS.

The SSL installation status can be checked online via the SSL checker at https://decoder.link/sslchecker.

How to install an SSL certificate on IIS8

After the certificate is activated, validated and issued, it needs to be installed by completing the request generated previously with the file received from the Certificate Authority. The process is described below:

  1. Download the certificate in PKCS#7 format in your SSLs.com account and upload it to the server. The certificate can be also downloaded from the email received from the CA. Please unzip the archive and find the .p7b/.cer certificate file there.
  2. Open Internet Information Services (IIS) Manager and double-click on the “Server Certificates” icon. Then click on “Complete Certificate Request” in the “Actions” section:
https://helpdesk.ssls.com/hc/article_attachments/115000774129/6.png

3. On the next screen it is necessary to fill in three fields:

1) File name containing the certification authority’s response– full path to the .p7b or .cer certificate file received from the Certificate Authority. It can be found the file system by clicking on “…” button;

2) Friendly name– general name for a certain certificate request. The domain name should be specified here to avoid confusion with other requests;

3) Select a certificate store for the new certificate – select “Personal” from the drop-down menu.

Once all fields are filled, click “Ok”. Now the certificate will appear in the “Server Certificates” storage.

https://helpdesk.ssls.com/hc/article_attachments/115000784925/7.png

4. After that, it is necessary to create a binding for the website to be available via HTTPS. Go to the “Sites” folder in the “Connections” section in the left part of the screen and double-click on the necessary website:

https://helpdesk.ssls.com/hc/article_attachments/115000774149/8.png

5. In the right corner of the screen, click on the “Bindings” button in the “Actions” section:

https://helpdesk.ssls.com/hc/article_attachments/115000774169/9.png

6. In the new “Site Bindings” window, click “Add…”:

https://helpdesk.ssls.com/hc/article_attachments/115000774189/10.png

7. Fill in the following fields in the “Add Site Binding” menu:

1) Type select “https” from the dropdown;

2) IP address– choose “All Unassigned” or choose IP address from the dropdown;

3) Port –  specify a custom port number for secured connection, or use the default port 443;

4) SSL certificate – select the completed certificate request by its friendly name.

It is recommended to check the “Require Server Name Indication” box as it allows multiple SSL certificates to be installed on the server. Once all the necessary information is specified, click “Ok”.

https://helpdesk.ssls.com/hc/article_attachments/115000774209/11.png

8. A new binding will appear in the “Site Bindings” section: 

https://helpdesk.ssls.com/hc/article_attachments/115000774229/12.png

9. Now the website should be available via HTTPS. You can check if it is installed correctly here.