Tags for this FAQ item:
IIS 8 IIS 8.5 Windows Server 2012 Windows Server 2012 R2

To what extent has this article answered your question?

Rated 3 stars, based on 3 votes

Microsoft IIS 8 - Install SSL Certificate

Last updated: 14/01/2016

This article shows you how to install an SSL certificate, using the Management Console on Windows 2012 Server. If you didn't generate a certificate request (CSR) yet, and didn't order a certificate, please see « IIS 8 SSL Certificate Request Instructions ».

If you wish to install multiple certificates on a single IP address for use with Server Name Indication (SNI), please refer to the « IIS 8 SNI Configuration Instructions ».

  1. Save the certificate you received to the desktop of your Windows 2012 Server.
  2. Open the IIS console by clicking Start, then opening Administrative Tools, then Internet Information Services (IIS) Manager.
  3. Click on your server's name in the left pane.
  4. In the center pane, double-click Server Certificates in the IIS section.

  5. In the Actions menu in the right pane, click on Complete Certificate Request... to open the Complete Certificate Request Wizard.

  6. Browse for the certificate file you just saved to your desktop. Enter a friendly name to identify the certificate with. This name will not be part of the certificate, but serves to identify the certificate for the server administrator. Use the same domain name you used when requesting your certificate. Select the Personal certificate store. Click OK to store the certificate on the server.

  7. The certificate is now installed on the server, but must be assigned to a web site in IIS. Click on your server name in the left pane to browse the sites, and select the site you wish to assign the certificate to. In the Actions menu in the right pane, click Bindings... to add a binding.

  8. In the Site Bindings window, click Add... to open the Add Site Binding window.

  9. Select https as type. The IP address should be the one your website is listening on. Alternatively, you can leave the dropdown to All Unassigned. Leave the TCP port to 443, and select the correct certificate from the dropdown.

  10. The Site Bindings window should now correctly reflect the addition of the certificate, which is now ready to be used by your website. Congratulations!