How to request and install an SSL Certificate on Server 2003

1.     Go to IIS Manager (Administrative Tools)

2.     Expand Server > Expand Web Sites

3.     Right-click Default Web Site > Properties

4.     Go to Directory Security tab

5.     Click on Server Certificate button

a.       Next

b.      Create a new certificate

c.       Prepare the request now, but send it later

d.      Name [Client name/year]

                                                               i.      Bit length must be at least 2048

                                                             ii.      Do NOT select Cryptographic Service Provider

e.      Organization: use ‘[Client Name]’

                                                               i.      Organizational unit: use ‘IT’

f.        Common name: can use exchange.[domain]

g.       Complete the geographical information

h.      Certificate Request File Name: use same name as section d: and save in My Documents

i.         Next > Finish > OK

6.       Go to

7.       Login using CBI login in notes

8.       Go to Products tab > SSL & Security > drop down: SSL & Certificates

9.       Go to Standard SSL section and choose Single Domain and number of years and Add to Cart

10.   Proceed to checkout, take no additional options

11.   Joe will be emailed, client will be emailed a verification email

12.   Go to My Products > SSL Certificates (on left menu)

13.   At top of certificate list section, click the ‘Use Credit’ link

14.   On right side under Set up New Certificate, click ‘Continue’ button

15.   Click ‘close’ to ‘certificate added successfully’

16.   Click ‘Manage Certificate’ link to the right of the newly listed certificate

17.   Click ‘Request Certificate’ link to the right of the new listed certificate

18.   Leave default selection (Third Party)

19.   Copy/paste contents of previously created text file

20.   Leave remaining selections as default, and click the ‘Next’ button

21.   Verify info is correct and click the ‘Next’ button, then click ‘Finished’ button

22.   Wait for verification email sent to client

a.       Click on link in verification email

b.      Then click the ‘Approve’ button

23.   Under ‘Manage Certificates’ > ‘Manage Requests’ > click the link to Update your list

24.   Click on the certificate name

a.       Click ‘Download’

b.      Choose IIS6 for Server 2003 setups

c.       Use same name as request text file and save in My Documents

d.      Extract contents of ZIP file to C:\Certificates

25.   Start > Run > MMC

a.       Add Certificates (local computer)

b.      Expand ‘Certificates’ > Expand ‘Intermediate Certification Authorities’ > Right-click on ‘Certificates’ > Choose ‘All Tasks’ > ‘Import’

c.       Choose Next

d.      Browse to Certificate folder > Change to ‘All Files’ > Select the intermediate certificate (it’s in the name)

e.      Select Automatic > Next > Finish

f.        Close MMC (don’t save console)

26.  Go to IIS Manager (Administrative Tools)

27.  Expand Server > Expand Web Sites

28.  Right-click Default Web Site > Properties

29.  Go to Directory Security tab

30.  Click on Server Certificate button

a.     Next

b.    Process the pending request

c.     Browse to certificate folder

d.    Choose ‘All Files’ and select the non-intermediate file

e.     Leave SSL port as 443 and continue through defaults

31.  Direct port 443 to the server

32.  Add an A record to the Registrar DNS that points the certificate domain (e.g. to the client’s server’s public IP address

Article ID: 28, Created On: 1/7/2011, Modified: 3/24/2011

Feedback (0)