Prerequisites
Before you begin, make sure you have:
- Administrative access to the Windows Server
- IIS Manager installed
- The SSL certificate file (usually
.ceror.p7b) - The CSR must have been generated on the same server
Step 1 — Complete Certificate Request
If you generated the CSR through IIS, you need to "Complete Certificate Request" to install the certificate.
- Open Internet Information Services (IIS) Manager.
- In the Connections panel, select your server name.
- Double-click Server Certificates in the center menu.
- In the Actions panel on the right, click Complete Certificate Request....
- Browse for your certificate file, provide a friendly name (e.g.,
MyDomain SSL), and select Web Hosting as the certificate store. - Click OK. The certificate should now appear in the list.
Missing Private Key? If you see the certificate but it doesn't have a private key associated, it means the CSR was not generated on this server or the process was interrupted. You may need to import a
.pfx file instead.
Step 2 — Bind SSL to Your Website
Once the certificate is installed on the server, you must bind it to your specific website.
- In the Connections panel, expand Sites and select your website.
- In the Actions panel, click Bindings....
- Click Add....
- Set Type to
https, IP address toAll Unassigned(or your specific IP), and Port to443. - Select your SSL certificate from the dropdown menu.
- Click OK and then Close.
Step 3 — (Optional) Setup HTTP to HTTPS Redirect
To force all traffic to HTTPS, you can use the URL Rewrite module:
- Select your site in IIS Manager and open URL Rewrite.
- Click Add Rule(s)... -> Blank Rule.
- Match URL:
(.*) - Conditions:
{HTTPS}matches the patternoff. - Action: Redirect to
https://{HTTP_HOST}/{R:1}with typePermanent (301).
Step 4 — Verify Installation
Open your browser and navigate to https://yourdomain.com. Ensure the padlock icon is visible. You can also use our SSL Checker to verify the intermediate chain is correctly installed.