- Open IIS manager
- Click on the server name
- Double click Server Certificates
- On the action panel click create certificate request
- On the request certificate window:
- Enter common name which can be *company.com.
- Enter organization which is the company name.
- Enter OU like “IT”.
- Enter city location.
- Enter state.
- Enter country like US or IL (only 2 letters).
- On the cryptographic windows leave the defaults which is Microsoft RSA… and 1024 bit length.
- On the file name window enter the file name for the “request cert” file and save it.
- Click finish.
- Go to the CA server.
- Go the CA role.
- Right click the CA server.
- Choose all tasks.
- Submit request.
- Choose and open the request file that you created before – “wildcard-request.txt”
- Now you will find the request pending on the CA server.
- Right click the pending certificate.
- Choose all tasks.
- Choose issue.
- After issuing the certificate you will see it under issued certificates.
- Right click on the issued certificate.
- Choose all tasks.
- Choose export binary data.
- On the export binary data window mark save binary data to file.
- Set a file name .cer and location for the binary file.
- This is how the exported certificate look like:
- Open IIS manager.
- Click on the server name.
- Double click on server certificates.
- On the action panel click on complete certificate request.
- On file name containing the certification… brows to select the server certificate.
- Choose a friendly name with * (wildcard) so they can serve all web sites.
- Right click on the web site that you want to bind the certificate.
- Choose edit binding.
- Click add
- Choose type https.
- Enter host name the same name as the web site.
- Click ok.
Sharing my IT technical knowledge and experience.