How to install a UniSSL certificate in Windows IIS 10
- Most IIS servers will likely require your CSR to be generated from the server on which the certificate will be installed. Once you've generated the CSR, select the option to 'Use a CSR generated elsewhere' and paste the CSR into the box to proceed.
- When generating your own CSR ensure you save your private key in a safe place. You will need it during installation. If you lose it, you will need a new CSR to reissue a new certificate.
Once you have downloaded your UniSSL certificate, locate the file yourdomain_com.cer or yourdomain_com.p7b and follow the installation steps below (unzipping the archive may be required):
1. Start Internet Information Services (IIS) Manager.
Enter “inetmgr” into the search field near 'Start' button or in the 'Run' window, which can be launched by pressing the Win+R hotkey.
2. Open 'Server Certificates'.
Double-click on the 'Server Certificates' icon at the IIS Manager’s home page.
3. Hover the mouse over the 'Actions' pane on the right side of the window and click 'Complete Certificate Request'.
4. Specify the Certificate Authority's response.
The next screen contains 3 fields:
- File name containing the certification authority’s response – browse to locate and select the certificate file.
- Friendly name – Enter an easy to remember name for the certificate like the domain name.
- Select a certificate store for the new certificate – keep the default 'Personal'.
Click 'OK' to import the certificate to the server storage when all fields are completed.
If the installation is successful, a new entry will appear on the 'Server Certificates' page.
5. Assign the certificate to your website.
Expand the 'Sites' subsection in 'Connections' panel on the left side of IIS Manager.
Select the website you wish to connect to the certificate.
Hover the mouse back to 'Actions' panel on the right and select 'Bindings...'
6. Click 'Add...' on the right side of 'Site Bindings' window.
7. Add site binding.
Enter the following data into the fields:
- Type – select “https” from the drop-down menu.
- IP address – choose the specific IP address or “All Unassigned”.
- Port – specify the port number for a secure connection. The default port number is 443.
- SSL certificate – select the corresponding certificate, identified by the previously specified Friendly name.
8. Complete binding.
Click 'OK' to bind the certificate with the site.
The new entry should appear in 'Site Bindings' window.
9. Confirm binding.
Now the website should be accessible via a secure HTTPS connection.
To check if the certificate has been successfully installed, you can use this tool.