Whether you are working with IIS 7, IIS 8, IIS 10, or IIS 11, importing an SSL certificate involves a few standard steps. This guide walks you through the process to help you enable HTTPS for your website.
SSL Certificate (.pfx file) with the private key exported from the previous server or purchased from a trusted CA (Certificate Authority).
Administrative privileges on the Windows Server.
IIS Manager is installed on your server.
Press Windows + R
, type inetmgr
, and press Enter.
Alternatively, go to Start and search for IIS Manager.
In the IIS Manager, in the left pane, click on your server name.
Under the IIS section, double-click Server Certificates.
In the Actions pane (right side), click Import.
In the Import Certificate dialog:
Browse to the location of the .pfx
file you want to import.
Enter the password you set during the export (if applicable).
Check the box “Mark this key as exportable” if you want to allow the certificate to be exported again.
Choose the Personal certificate store (this is the default).
Click OK to import the certificate.
Now that your certificate is installed, you need to bind it to your website:
In the IIS Manager, in the left pane, expand Sites and select the website you want to secure.
In the Actions pane, click Bindings.
In the Site Bindings window, click Add (or Edit if you're updating an existing binding).
Set Type to https and set Port to 443 (this is the standard port for HTTPS).
From the SSL certificate dropdown, select the certificate you just imported.
Click OK.
After completing the import and binding steps, you should verify that your website is correctly serving traffic over HTTPS.
Open a browser and go to https://yourdomain.com
. You should see the padlock icon in the address bar, indicating that SSL is active.
Check the Expiration Date: Always ensure the certificate is valid by checking its expiration date and renewing it before it expires.
Wildcard and Multi-Domain Certificates: If you're using wildcard certificates (e.g., *.yourdomain.com
) or multi-domain certificates, ensure that the certificate is correctly installed and bound to all required sites.
Multiple Certificates: If you have more than one certificate installed, ensure that the correct one is bound to the site in IIS.