I have a web server that was setup for an application internal monitoring application. After I got it all setup - of course the security team is not happy with it because it uses http instead of https. How do I add a certificate (*.internal.foo.com) to this Windows 2016 server and then make it available in IIS for the monitoring site? I *think* the answer is to use MCC with the certificate add-in. But then I get into the weeds as to should I use My user account, Service account, Compuer account. Where should I upload the certificate? Then in IIS can I just right click the default web site Edit Bindings, add https and presumably I'm then able to select a certificate since one was added in MCC?