🛠 How to Import an SSL Certificate in IIS (All Versions)

🛠 How to Import an SSL Certificate in IIS (All Versions)

Whether you are working with IIS 7, IIS 8, IIS 10, or IIS 11, importing an SSL certificate involves a few standard steps. This guide walks you through the process to help you enable HTTPS for your website.

✅ Prerequisites

• SSL Certificate (.pfx file) with the private key exported from the previous server or purchased from a trusted CA (Certificate Authority).

• Administrative privileges on the Windows Server.

• IIS Manager is installed on your server.

✅ Steps to Import an SSL Certificate in IIS

1. Open IIS Manager

• Press Windows + R, type inetmgr, and press Enter.

• Alternatively, go to Start and search for IIS Manager.

2. Go to the Server Certificates Section

• In the IIS Manager, in the left pane, click on your server name.

• Under the IIS section, double-click Server Certificates.

3. Import the SSL Certificate

• In the Actions pane (right side), click Import.

• In the Import Certificate dialog:

  • Browse to the location of the .pfx file you want to import.

  • Enter the password you set during the export (if applicable).

  • Check the box “Mark this key as exportable” if you want to allow the certificate to be exported again.

  • Choose the Personal certificate store (this is the default).

  • Click OK to import the certificate.

4. Assign the SSL Certificate to a Website

• Now that your certificate is installed, you need to bind it to your website:

  • In the IIS Manager, in the left pane, expand Sites and select the website you want to secure.

  • In the Actions pane, click Bindings.

  • In the Site Bindings window, click Add (or Edit if you're updating an existing binding).

  • Set Type to https and set Port to 443 (this is the standard port for HTTPS).

  • From the SSL certificate dropdown, select the certificate you just imported.

  • Click OK.

5. Verify the SSL Installation

• After completing the import and binding steps, you should verify that your website is correctly serving traffic over HTTPS.

• Open a browser and go to https://yourdomain.com. You should see the padlock icon in the address bar, indicating that SSL is active.

🧠 Additional Tips

• Check the Expiration Date: Always ensure the certificate is valid by checking its expiration date and renewing it before it expires.

• Wildcard and Multi-Domain Certificates: If you're using wildcard certificates (e.g., *.yourdomain.com) or multi-domain certificates, ensure that the certificate is correctly installed and bound to all required sites.

• Multiple Certificates: If you have more than one certificate installed, ensure that the correct one is bound to the site in IIS.