mO SharemO Share

How to Install an SSL/TLS Certificate In Microsoft IIS 7

Owned by Arindam Banerjee (Unlicensed)
Last updated: Aug 03, 2020
4 min read

HTTPS uses the SSL/TLS protocol to encrypt the communication channel between a Web server and the client browser, so that attackers can't steal data. SSL/TLS also confirms that a website server is who it says it is, preventing impersonations. This stops multiple kinds of cyber attacks. Even though modern browsers are making sure that the browsed website runs on secured protocols before they mark the site safe and enable advanced features.

The following instructions is a standard guide for the SSL installation on Microsoft IIS 7. The process will be similar in advanced version of IIS as well.

The implementation of SSL certificate may differ as per the certificate type. The digital certificate vendor from whom you’ll purchase the certificate or the documentation from Certificate authority should guide you precisely.

Pre-requisites

  1. A domain name linked with Ginesys website. That means you should be able to browse the Ginesys using a domain name instead of using an IP or server name. Your server administration team should be able to explain this in details. A sample URL should look like http://www.yourdomain.com/GinesysWeb after you have associated a domain name with Ginesys Web.

  2. A SSL/TLS certificate. This is the certificate you received from the CA for your domain. You have to contact a digital certificate vendor to purchase a SSL/TLS certificate for your domain.

HTTPS can also be activated without having domain name associated. In that case a server based certificate need to purchased. The digital certificate vendor should guide you to choose the correct certificate as per your usage

Installation Instructions

Adding the certificate to IIS Server

  1. Go to run and type and enter inetmgr to open Internet Information Services (IIS) Manager. Alternatively, click Start, Control Panel, Administrative Tools, and then select Internet Information Services (IIS) Manager.

  2. In the left Connections menu, select the server name (host) where you want to install the certificate.

  3. In the center menu, click the Server Certificates icon under the Security section near the bottom.

    Microsoft IIS 7 Step4

     

  4. In the right Actions menu, click Complete Certificate Request.

    Microsoft IIS 7 Step5

     

  5. In the Complete Certificate Request wizard, click “” to browse and select Your Server Certificate file that was previously saved on your server’s desktop.

  6. Enter a Friendly Name which is an internal reference name to distinguish the file later.

     

  7. Click OK and the newly installed certificate should appear in the refreshed Server Certificate List.

Binding Your Certificate to Your Website

Now, proceed with the remaining steps which will help you assign or bind the SSL certificate to the appropriate website.

  1. From the left Connections menu, expand your server’s name, expand the Sites folder, and then select the site (e.g. Default Web Site) that you want to secure.

  2. In the right Actions menu, click Bindings…

     

  3. In Site Bindings window verify if there is any entry showing in the list which has 443 in Port value. If no such entry found, click Add. If an entry with Port 443 is found in the list, then select that entry and click Edit.

     

  4. In Add Site Bindings, enter the following information or if you are editing an existing entry, ensure following values:

  1. Type – Select “https”.

  2. IP Address – Select “All unassigned”. Now, if you have multiple IP addresses, select the correct one that applies.

  3. Port – Enter “443”

  4. SSL Certificates – Select the “friendly name” of the SSL certificate you just installed.  You can always click “View” to confirm the certificates validity details.

     

  5. Click OK to finish binding the SSL certificate to your live website.

Congratulations! You’ve successfully installed your SSL certificate!

Verifying access via HTTPS

Normally the IIS server access can be tested just visiting the default landing page of IIS. On a standard HTTP protocol the the URL is http://yourserver or http://yourdomain.com. A successfully configured IIS should return the IIS landing page.

Same as, when the HTTPS is successfully configured, the same landing page can be accessed using a HTTPS URL like https://yourdomain.com. Once you are able to access the default landing page successfully, then accessing Ginesys won’t be any challenge. Just append /GinesysWeb in the URL. As an example https://yourdomain.com/GinesysWeb.