- Open the ZIP file containing your certificate and copy the file named your_domain_name.cer to the desktop of the web server you are securing.
- Go to your Administrative Tools, and Open the Internet Services Manager. Right-Click on the Default Website or the website that the CSR was created on and select Properties. The certificate will only be able to be installed on the same website that you created the CSR on.
- Go to the Directory Security panel. Click on the "Server Certificate..." button. This will start the certificate wizard. Click "Next".
- Choose to Process the pending request and install the certificate and click Next.
- "Browse" for your SSL Certificate. Locate your_domain_name.cer, then Click Next. Follow the rest of the wizard steps until finished.
In most situations IIS will instantly begin using the new certificate and a restart is not necessary. You can verify that your certificate is properly installed by using the DigiCert Certificate Testing Tool.
The best way to test your certificate using a browser is to visit its secure URL with a browser other than Internet Explorer. We recommend this because Internet Explorer is able to verify your site is trusted with or without the intermediate certificate, but most other browsers cannot do this. If other browsers complain about your site not being trusted, but Internet Explorer does not, then you most likely need to install the intermediate certificate (instructions below).
Note for ISA users: If you are using ISA 2004 or 2006 and your server is not sending the intermediate certificate, you need to fully reboot your server. We have confirmed this to be true with many customers: ISA server will not properly send the intermedate certificate chain until after a full reboot.
If you notice that the server continues to use an old certificate or the server will not load https at all then you may need to shutdown and restart the server.
Updated almost 2 years ago