Login Signup Buy Now

Toll Free Toll Free: 800-892-7095   Live Chat Live Chat

Install SSL Certificate IIS 7

Download and copy your certificate files to your server

Download your SSL certificate and support files by clicking on the download link in your fulfillment email or from your GeoCerts SSL Manager account. Download the PKCS#7 formatted version of your certificate.

  1. Rename the file your_domain_com.p7b to your_domain_com.cer

Install the PKCS#7 SSL Server Certificate File

  1. Open the Internet Information Services (IIS) Manager. From the Start button select Programs > Administrative Tools > Internet Information Services Manager.
  2. In the IIS Manager, select the server node on the top left under Connections

    Select the server node
  3. In the Features pane (the middle pane), double-click the Server Certificates option located under the IIS or Security heading (depending on your current group-by view).

    Double-click Server Certificates
  4. From the Actions pane on the top right, select Complete Certificate Request.

    Complete Certificate Request
  5. On the Complete Certificate Request page browse to the SSL certificate file your_domain_com.cer.

    Complete Certificate Request
  6. Next, type a friendly name for the certificate in the Friendly name box, and then click OK. Something like www.mydomain.com will do.
  7. URGENT!! You may receive the following error: Cannot find the certificate request associated with this certificate file. A certificate request must be completed on the computer where it was created. You can ignore this error. Just click cancel. This is a known bug in IIS7.
  8. Your SSL server certificate is now installed on your server and you should see it listed in the Server Certificates view. Now you will need to configure your web site to use the certificate.

Edit Bindings

  1. If you have only one web site it will mostly likely be listed in IIS 7 as the Default web site. Select and right-click on the Default web site and select Edit Bindings.

    Edit Bindings
    If you only see 'http' under the Type column of the Web Site Bindings dialog box click the Add button and select 'https' from the drop down box under Type.

    Select 'https' from the drop down
    Then select the name of the SSL certificate from the SSL certificate list that you just installed and click Ok.

    Select the name of the SSL certificate
    Then click Close to complete the Edit Bindings wizard.
  2. URGENT!! You may receive the following error: There was an error while performing this operation Details: CertEnroll::CX509Enrollment::p_InstallResponse: ASN1 bad tag value met. 0x8009310b (ASN:276) You can ignore this error. Just click cancel. This is a known bug in IIS7.

Verify Installation

New To verify if your certificate is installed correctly, use our Certificate Installation Checker.

Test your SSL certificate by using a browser to connect to your server. Use the https protocol directive. For example, if your SSL was issued to secure.mysite.com, enter https://secure.mysite.com into your browser.

Your browser's padlock icon Browser padlock will be displayed in the locked position if your certificate is installed correctly and the server is properly configured for SSL.

Troubleshooting

For IIS SSL troubleshooting, Microsoft has designed a tool - SSL Diagnostics - to aid in quickly identifying configuration problems in the IIS metabase, certificates, or certificate stores.

Disclaimer: GeoCerts has made efforts to ensure the accuracy and completeness of the information in this document. However, GeoCerts makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. GeoCerts assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document. Further, GeoCerts assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. GeoCerts reserves the right to make changes to any information herein without further notice.

Our Customers

  (see more)
Our customers
Symantec_platinum_partner
Follow us on Twitter!

Copyright © 2002-2012 GeoCerts, Inc.

* Ten minutes applies to QuickSSL & QuickSSL Premium only. SSL orders flagged by GeoTrust for a manual security audit may take longer than ten minutes.