Support

Guides, Articles and Frequently Asked Questions






  Index | Install

How do I install my SSL certificate on IIS 7 (Windows Server 2008)


Microsoft 's server platform , Windows Server 2008 uses the Internet Information Services ( IIS) 7.0. The new version brings important changes with regard to the management of SSL certificates. Especially in terms of setting up the certificates , which has become much easier in this release .

In addition to the known options on ordering SSL - Certificates, IIS 7 includes the ability to:


  • to generate more than one certificate simultaneously
  • to import , export certificates and extend in a simple way SSL.
  • to create self-signed certificates quickly for testing purposes.



This article guides you to set up in 2008 through the checkout process to EuropeanSSL a certificate on an IIS 7 / Windows Server .


Creating the Certificate Signing Requests

The first step begins before the actual order , when creating a Certificate Signing Request (CSR). On the IIS7 that is very simple :


  • 1. Click on the Start menu , then navigate to " Administrative Tools" and then click Internet Information Services ( IIS) Manager.
  • 2. Click in the "Connections" left on the server name and then select the option " Server Certificates " by double-clicking .
  • 3. Now click in the " Actions" on the right "Create Certificate Request" .
  • 4. Now enter all the information about your company and the host name for which you need a certificate in the space provided .


Explanation of terms :

Common Name: the host name for which you need a certificate .

Organization: The name of your company. Please enter the exact name , including the Company Type ( GmbH, AG , etc..) To .

Organizational Unit: The department that manages the certificate and set up .

City / Locality: Enter ask the company's headquarters at .

State/Province: Enter here the state .

Country/Region: Here Please enter the country code .

After entering all information please click on "Next"

  • 5. Do not leave the preset default Cryptographic Service Provider as it is and make the bit length of at least 2048 bits or higher. Then click on " Next"

  • 6 In the final step , please enter using the folder selection (button with 3 dots) to be stored or the name of the folder in which the CSR. Afterwards click on "Finish".

    The CSR now created , you can now use for ordering your EuropeanSSL certificate.



    Installation of SSL - certificate on the IIS 7

    To configure your new EuropeanSSL Certificate on IIS 7, in the first step copy the file to your web server .


    • 1. Click on the Start menu , then navigate to " Administrative Tools" and then click Internet Information Services ( IIS) Manager.
    • 2. Click in the "Connections" left on the server name and then select the option " Server Certificates " by double-clicking .
    • 3. Now click in the " Actions" on the right side on "Complete Certificate Request " .
    • 4. via the folder selection (button with 3 dots) navigate to the resulting certificate file . For safety, choose "view all Types" in the selection of the display to make sure that the file is displayed .
      In the " Friendly Name " field, enter a name that you can remember , to the certificate well regain it later . Click then on "OK " .
    • 5. If all entries are correct , you will see the newly installed certificate in the List of Server Certificates.
      If you receive the message that the private key was not found, please make sure you install the certificate on the same server on which you have also created the CSR.


    Note: Please note that use of the CSR generator is generally not possible in connection with the web server IIS , since it only accepts certificates for which the CSR was generated on the server itself .

    If the server does not accept CSR and certificate, please create a new request on the server and send the new CSR unformatted by email to EuropeanSSL.
    We are happy to provide you with your certificate with the new CSR again . This service is free of charge .


    Bind the certificate to a website


    • 1. Click on the Start menu , then navigate to " Administrative Tools" and then click Internet Information Services ( IIS) Manager.
    • 2. Click on the "Connections" section the web page that you want to associate with the certificate. Then click in the right column on "bindings".
    • 3. Click on the button "Add"
    • 4. Please change the field "Type" to "https" and then select the certificate that you want to link to the website ( the list shows your certificates using the previously created " Friendly Name". ) in the field "SSL Certificate" . Click on " OK".
    • 5. In the list of shortcuts you can now see the link for the https port 443 , click "Close" .



    To set up an intermediate certificate on the IIS 7

    The installation of the supplied intermediate certificate is important, in case this certificate is not installed, the certificate chain is not closed and the browser categorizes your certificate as invalid / untrusted.


    • 1. Download the intermediate certificate to a folder on your web server
    • 2. Click the intermediate certificate to a double-click to view the certificate details .
    • 3. In the "General" tab then click on the button " Install Certificate " button to open the Import wizard. Then, click on "Next".
    • 4. In the Certificate Import Wizard , select the option "Place all certificates in the Following store" and then click "Browse ..." .
    • 5. Now activate the option "show physical stores" , expand the folder "Intermediate Certification Authorities " and select the folder "Local Computer"

    Now click on "OK" , then "Next" and then click " Finish" to complete the installation of the intermediate certificate .



    It may be necessary to restart the IIS 7 . Whether the installation of the certificate has been operating as desired , you can easily check by going to the website with https instead of http as usual .

  • Was this article helpful?




    This site makes use of cookies to enhance browsing experience and provide additional functionality. By continuing to browse this website you are agreeing to our use of cookies. OK