This article explains how to issue and install an SSL on your Windows VPS or Dedicated server running IIS
Generating a CSR:
Login to your server you are installing the SSL on through RDP using your servers hostname or IP address and your administrator username and password.
Once Logged in: 1. Open IIS (Start > Internet Information Services (IIS) Manager 2. On the left of the IIS window, click on the server name. 3. Under the 'IIS' section, click on Server Certificates. 4. On the Right of the IIS window, you should now see an option forÂCreate Certificate Request... 5. Fill out the certificate request for with your domain you are issuing the SSL to and your organization details and click Next. (please note the common name is specific, so if you are installing it on a subdomain, then use that subdomain. In most cases Issuing to www. would also include the SSL for the non www version *contact support for further details*). 6. Set the Bit Length to 4096 and then click Next. 7. Give the Certificate request a Name and save it somewhere on the server.
If you then browse to the file you saved and open this up in notepad (or another text editor of your choice) you can copy the text to issue the SSL.
If you are issuing the SSL with ourselves, you will browse to your control panel at https://billing.hostinguk.net/ > services > My services > Your SSL subscription > Generate cert. Your server version would be Microsoft IIS 5.x or later.
These can also be configured as Aliases to an existing account if you don't have these configured already.
Alternative methods some providers use are 'file auth' which will give you a txt file to upload to your site. The file does need to be web accessible, however if you have access this is the quickest and easiest method.
DNS authentication will allow you to create a TXT record in the DNS zone of the site, which can take some time depending on DNS propagation.
Installation: Once you have the SSL, you can now install it.
1. Log back into the server through RDP and launch IIS. 2. Copy the certificate file (typically .cer) to your server. 2. Click on the Server name and go to Server Certificates. 3. Click on Complete Certificate Request 4. Find the certificate file on your computer. 5. Give the certificate a Friendly Name (e.g domain.com 2017-2018) 6. Click OK.
The SSL has now been installed on the server. You can now assign this to your website.
Find your Site in IIS, right click the domain and select bindings.
If this is a renewal you can select the existing https bindings and click the certificate drop down to select your new certificate (you will need to do this for all https bindings on the site).
If this is a new SSL, you will need to: 1. click Add 2. Set Type to https 3. Choose the IP address that your site uses. 4. If the IP address is shared with other sites, tick require server name indication 6. Fill the host name with the domain the SSL was issued to (www.domain.com) 5. Select the SSL certificate from the SSL Certificate drop down. 6. Click Ok
Please Note If your site is on a shared IP on the server, you will need to repeat the steps for adding the binding for the other versions of the domain (www.domain.com,domain.com, dev.domain.com).
