How Can We Help?

Certificate installation: Microsoft IIS 8.x

You are here:

If you have not yet created a Certificate Signing Request (CSR) and ordered your certificate, read CSR generation: IIS 8.x

After Secorio has issued your SSL certificate , you need to First install on the server from which the certificate request was generated.

How to install and configure your SSL certificate on Windows Server 2012 - IIS 8 and Windows Server 2012 R2 - IIS 8.5 (single certificate)

  1. Open the ZIP file with your certificate. Save the file with the name "your_domain_name.cer" on the desktop of the web server to be backed up.
    Note: If you did not receive a .CER when downloading, simply download the CRT file.
  2. Click on the home screen or search for and open IIS- Manager (Internet Information Services) .
  3. Click the server name.
  4. From the Center menu, double-click the ' Server - Certificates button' in the 'IIS' section (in the middle of the menu). In the Actions menu (right), click ' Complete certificate request ... ". The " Complete Certificate Request " wizard opens.
  5. Navigate to the your_domain_name.cer file provided by Secitgo. You must then enter a display name. The display name is not part of the certificate itself, but is used by the server administrator to easily distinguish the certificate. Specify that the new certificate should be stored in the personal certificate store.
  6. After the SSL certificate is successfully installed on the server, you must use IIS to assign it to the appropriate website.
  7. From the Connections menu in the Internet Information Services Manager main window, select the name of the server on which the certificate was installed.
  8. Under “Sites”, select the site to be secured with SSL.
  9. In the "Actions" menu (on the right) click on " Bindings ... ". The Site Bindings window opens.
  10. In the Site Bindings window, click Add ... ". The " Add Site Binding " window opens.
  11. Under Type, choose https . The IP address should be the site's IP address or All Unassigned. The port over which the traffic is secured by SSL is normally 443. In the "SSL Certificate" field, the certificate that was installed in step 7 should be specified.
  12. Click OK. '
  13. Your SSL certificate is now installed and the website is configured to accept secure connections.

Information on how to activate your SSL certificate for other Windows servers can be found in our PFX export instructions .

Install and configure your SSL certificate on Windows Server 2012 - IIS 8 and Windows Server 2012 R2 - IIS 8.5 (multiple certificates with SNI)

  1. Open the ZIP file with your certificate. Save the file with the name "your_domain_name.cer" on the desktop of the web server to be backed up.
    Note: If you did not receive a .CER when downloading, simply download the CRT file.
  2. Click on the home screen or search for and open Internet Information Services (IIS) Manager .
  3. Click the server name.
  4. From the center menu, double click the ' Server - Certificates button' in the 'IIS' section (in the middle of the menu).
  5. In the "Actions" menu (on the right) click on " Complete certificate request ... ". The " Complete Certificate Request " wizard opens.
  6. Navigate to the your_domain_name.cer file provided by Secorio. You must then enter a display name. The display name is not part of the certificate itself, but is used by the server administrator to easily distinguish the certificate. Set the new certificate to be stored in the personal certificate store.
  7. Click 'OK' to install the certificate on the server. Note: In IIS 8, a known problem has occurred with the following error: "Error removing certificate" if this is the same server on which you created the CSR, the certificate is actually installed in most cases. Simply cancel the dialog and press 'F5' to update the list of server certificates. If the new certificate is now in the list, it has been installed on the server. However, you may want to verify that the certificate is in the web hosting certificate store. If not, you can move it there (see instructions on move a certificate to another certificate store ). If it is not in the list, you will have to reissue the certificate with a new CSR (see our CSR build instructions for IIS 8) . After creating a new CSR, log in to your Secitgo account and click the Replace button for your certificate.
  8. After the SSL certificate is successfully installed on the server, you must use IIS to assign it to the appropriate website.
  9. From the Connections menu in the Internet Information Services Manager main window, select the name of the server on which the certificate was installed.
  10. Under “Sites”, select the site to be secured with SSL.
  11. In the "Actions" menu (on the right) click on " Bindings ... ". The Site Bindings window opens.
  12. In the Site Bindings window, click Add ... ". The " Add Site Binding " window opens.
  13. Under Type, choose https . The IP address should be the site's IP address or All Unassigned. The port over which the traffic is secured by SSL is normally 443. In the "SSL Certificate" field, the certificate that was installed in step 7 should be specified.
  14. Click OK. '
  15. Your first SSL certificate is now installed and the website is configured to accept secure connections.
  16. Repeat the steps to create a CSR for your 2nd + site.
  17. Install the certificate file up to step 12 as mentioned above.
  18. Under Type, choose https . The IP address should be the site's IP address or All Unassigned. The port over which SSL traffic is secured is typically 443. Enter the host name you want to secure and check the Require Server Name Indication box. This is required for all additional locations (not required at the primary location, as shown in step 13.) The "SSL Certificate" field should indicate the certificate that was installed for your additional certificate in step 7
  19. Your second SSL certificate is now installed and the website is configured to accept secure connections.
  20. Repeat steps 16 through 19 to set up additional locations.
Previous Install the certificate with Plesk Server Administrator
Next Certificate installation: f5 BIG-IP v9.x +
Table of Contents