Solved

Installing SSL Certificate

Posted on 2013-05-29
1
307 Views
Last Modified: 2013-06-04
The people that provide our SSL certificate sent me an email with the three text pieces needed to create the cert, but I'm not sure how to import them into the server. The three pieces of text that were sent to me are labeled: RSA PRIVATE KEY, Web server certificate and Intermediate CA. I know these need to be copied into notepad and then saved as specific files (.pfx, .crt, etc), but I'm not sure which parts get saved as which or how to import those three files into IIS on the server.
Any help would be greatly appreciated, thanks.
0
Comment
Question by:Broadsound
1 Comment
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 500 total points
ID: 39205858
Whenever I've had to do this, I've used openssl to combine the certificate and key to make a single PFX file.

Taking instructions from the SSLShopper's page:
openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt -certfile CACert.crt

Open in new window


Within Windows then, I'd execute 'mmc', and add the snap-in for certificates and point it to the local machine.  Once there, I'd navigate to the personal certificate store, and Import, and point to your PFX file.  Make certain to make the private key as exportable, or when IIS attempts to make use of the certificate, it will fail.  I usually also direct that the certificates be stored where they belong based on their type... which will put the intermediate CA cert in the intermediate certificates store.  (If you don't get the intermediate into the PFX, not a big deal, you can manually import that certificate into the intermediate store.)

Once done, the certificate will be available to Bind to a site in IIS.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Normally after a failure of Domain Controller, when promoting new DC the DC is renamed, we will discuss the options in Dcpromo to re-create the DC with the same name. Scenario: You are a small IT shop with two Domain Controllers (Domain Contr…
To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

837 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question