Install Your Certificate
-
Save the certificate in a text file and call it your_domain_name.cer, then save it to the desktop of the web server you are securing.
-
Go to your Administrative Tools and open the Internet Services Manager. Right-click on the Default Website or the website that the CSR was created on and select Properties. The certificate will only be able to be installed on the same website that you created the CSR on.
-
Go to the Directory Security panel. Click on the Server Certificate button. This will start the certificate wizard. Click Next.
-
Choose to process the pending request and install the certificate, and click Next.
-
Browse for your SSL Certificate. Locate your_domain_name.cer, then Click Next. Follow the rest of the wizard steps until finished.
Test Your Certificate
In most situations IIS will instantly begin using the new certificate and a restart is not necessary.
The best way to test your certificate using a browser is to visit its secure URL with a browser other than Internet Explorer. We recommend this because Internet Explorer is able to verify your site is trusted with or without the intermediate certificate, but most other browsers cannot do this. If other browsers complain about your site not being trusted, but Internet Explorer does not, then you most likely need to install the intermediate certificate (instructions below).
Back-Up The Certificate And Private Key (Recommended)
It is always good to keep a backup of your certificate and private key in case your server crashes. You must backup your certificate from your server in order to include a backup of your private key. The private key is not included in your certificate files, and the certificate is not functional without the private key.
Import The Intermediate Certificate
Because the Intermediate Certificate is built into your_domain_name.cer, this step should not be necessary for most installations. When the certificate is correctly installed to your server, browsers will not display any certificate warnings whatsoever. However, if your clients are getting a warning stating that the certificate was issued by a company that you have not chosen to trust, then the following procedure will fix that problem:
-
Download the Certificate file from inside your account and save it to your desktop.
-
Double-click the certificate. This will open the certificate to view.
-
At the bottom of the General tab, click the Install Certificate button. This will start the certificate import wizard. Click Next.
-
Select Place All Certificates In The Following Store, and click Browse.
-
First, click the Show Physical Stores box, then expand the Intermediate Certification Authorities folder. Select the underlying Local Computer folder, and click OK. Hit Next, then Finish
-
Your intermediate certificate is now installed. You may need to restart your server.