4 Ways To Install An Ssl Certificate

Open the Server Manager. Click Tools and select Internet Information Services (IIS) Manager. Select the workstation you are installing the certificate on under the Connections list. Open the Server Certificates tool. Click the Create Certificate Request link in the upper-right corner, under the Actions list. Fill in the information in the Request Certificate wizard. You will need to enter your two-digit country code, the state or province, city or town name, full company name, section name (i. e. IT or Marketing), and the common name (typically the domain name). Leave the “Cryptographic service provider” set to default. Set “Bit length” to “2048”. Name the certificate request file. The file name doesn’t matter, as long as you can find it amongst your files.

You will need to upload your CSR file to the certificate service when you order it. This will be used to generate the certificate for your server. Some providers will have you copy the contents of the CSR file, while others will have you upload the file itself.

Rename the Primary Certificate to “yoursitename. cer”.

Your certificate should appear on the list. If it does not, ensure that you are using the same server that you generated the CSR on.

Click the Bindings link in the Actions list. Click the Add button in the Site Bindings window that appears. Select “https” from the “Type” dropdown menu, and select your installed certificate from the “SSL certificate” dropdown menu. Press OK and then Close.

Once the certificates have been copied to the server, double-click it to open the Certificate Details. Click the General tab. Click the “Install Certificate” button at the bottom of the window. Select “Place all certificates in the following store” and then browse for the Local store. It can be found by checking the “Show physical stores” box, selecting Intermediate Certificates, and then clicking Local Computer.

Start the OpenSSL utility. This can usually be found at /usr/local/ssl/bin/ Create a key pair by entering the following command: openssl genrsa –des3 –out www. mydomain. com. key 2048 Create a passphrase. This passphrase will need to be entered whenever you interact with your keys. Start the CSR generation process. Enter the following command when prompted to create the CSR file: openssl req –new –key www. mydomain. com. key –out www. mydomain. com. csr Fill out the requested information. You will need to enter your two-digit country code, the state or province, city or town name, full company name, section name (i. e. IT or Marketing), and the common name (typically the domain name). Create the CSR file. Once the information has been entered, run the following command to generate the CSR file on your server:[4] X Research source openssl req -noout -text -in www. mydomain. com. csr

You will need to upload your CSR file to the certificate service when you order it. This will be used to generate the certificate for your server.

If the certificates are in a text file, you will need to change it to a . CRT file before uploading it Check the keys that you download. There should be 5 dashes “-” on either side of the BEGIN CERTIFICATE and END CERTIFICATE lines. Also ensure that there are no extra spaces or line breaks inserted into the key.

Save the changes to the file once you are finished. Re-upload the file if necessary.

Open the Exchange Management Console. You can find this by clicking Start, clicking Programs, selecting Microsoft Exchange 2010, and then clicking Exchange Management Console. Once the program loads, click the Manage Databases link in the center of the window. Select “Server Configuration”. This is located in the left frame. Click the “New Exchange Certificate” link in the Actions list on the right side of the screen. Enter a memorable name for the certificate. This is for your own convenience and reference, and will not affect the certificate. Enter your configuration information. Exchange should automatically select the proper services, but if it does not you can set them yourself. Make sure all of the services you need protected are selected. Enter in your organization information. You will need to enter your two-digit country code, the state or province, city or town name, full company name, section name (i. e. IT or Marketing), and the common name (typically the domain name). Enter a location and name for the CSR file that will be generated. Make note of this location for the certificate ordering process.

Copy the certificate file that you receive to your Exchange server.

Click File and select Add/Remove Snap In. Click Add, select Certificates, and then click Add again. Select Computer Account and then click Next. Choose Local Computer for the storage location. Click Finish and then OK. This will return you to the MMC. Select Certificates in the MMC. Choose “Intermediate Certification Authorities” and then select Certificates. Right-click on Certificates, choose All Tasks, and then choose Import. Use the wizard to load the Intermediate Certificates that you obtained from your certificate provider.

Browse for your Primary certificate file and then click Complete. Once the certificate has been loaded, click Finish. Ignore any errors that say the process failed; this is a common bug.

Select your server from the list that appears and click Next. Select which services you want to protect with the certificate. Click Next, then Assign, and then Finish.

Login to cPanel. Open the control panel and look for the SSL/TLS Manager. Click the “Generate, view, upload, or delete your private keys” links. Scroll down to the “Generate a New Key” section. Enter in your domain name, or select it from the drop-down menu. Select 2048 for “Key Size”. Click the Generate button. Click “Return to SSL Manager”. From the main menu, select the “Generate, view, or delete SSL certificate signing requests” link. Enter in your organization’s information. You will need to enter your two-digit country code, the state or province, city or town name, full company name, section name (i. e. IT or Marketing), and the common name (typically the domain name). Click the Generate button. Your CSR will be displayed. You can copy this and enter it into your certification order form. If the service requires the CSR as a file, copy the text into a text editor and save it as a . CSR file.