[Windows] Installing an SSL Certificate Using IIS

Justina

Windows servers accept certificates in .PFX format. You will most likely have a certificate in a standard format consisting of three files - Private Key (privateKey.key), Cert (certificate.crt) and CA Buncle (ca.crt). That means, that you will need to convert those into one .PFX file. On Linux you can do this from the command line:

openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt -certfile ca.crt

Otherwise, you can use third-party tools such as:

https://www.sslshopper.com/ssl-converter.html

SSL Installation

After you prepare the certificate in .PFX format, you can install it through IIS.

1. Start 'Internet Information Services (IIS)'
2. Select the server name
3. Double-click 'Server Certificates'

4. On the right side, in the 'Actions' section, click on 'Import ...'

5. In the popup table, click '...'. and indicate your certificate location.

In the 'Password' field, type the password that you used to convert the certificate.
At the 'Select Certificate Store', select 'Personal' if you do not want to use SNI technology.

After saving, the certificate will be installed on your server.

SSL assigning to a site

1. Select your site and click 'Bindings ...' in the 'Actions' section

2. In the popup window, click the 'Add ...' button

3. Another new window will open

Under 'Type', select https
In the 'IP address' field, you can choose whether to assign a specific IP address to this site (the same settings as for port 80 should be left)
The 'Port' field does not need to be changed
Enter your domain in the 'Host name' field
Under 'SSL Certificate', select the certificate you just installed and click 'OK'.