How to affix SSL on IIS Web Servers

Regardless of having your Web servers on-premise or hosted in the cloud, Making sure that your website traffic is secured is a critical priority. There are a variety of options to implement this such as doing SSL offloading on load balancers or having SSL affixed directly on the web server. If you are using Windows Internet Information Services (IIS) for your web server, it has a neat feature which allows you to do exactly this. In this posts, I am going to show you the step by step installation of SSL Certificate on your IIS.

  1. On Internet Information Services (IIS) Manager, there is a list of all sites configured on your web servers. Select the site where you want to install Secure Socket Layer (SSL) certificate.1
  2. Once you have selected the website where you need to install SSL, select bindings.2
  3. In the Site Bindings window, choose HTTP Secure (HTTPS) since SSL is used for secured HTTPS traffic. However, make sure that you already have a SSL certificate provided to you by SSL certificate providers (e. g. DigiCert, GoDaddy).3
  4. If you have not yet sent a certificate request to SSL Certificate Providers you need to create a Certificate Request and send it to the SSL providers. Go to Server Certificates, and click on create certificate request.4
  5. A window with Distinguished Name Properties will appear and you need to fill up the required information. Please note that common name should be exactly the same as your host name.5
  6. Select a cryptographic property if you are familiar with the types of cryptographies. Otherwise, just leave it on default. Please note that the higher the bit length is the more secured your SSL traffic will be however this results to a higher overhead and may reduce performance.6
  7. Provide your desired certificate file name and send this certificate request file to your preferred SSL Certificate provider.7
  8. Once you have received the signed SSL certificate from the provider, you need to import that file on the list of your IIS Server certificates. Usually, they will provide a password along with the certificate bundle so that only you can open the bundle.8
  9. After importing the SSL certificate, it should now reflect on the list of your available SSL certificate. You can now proceed with binding this SSL certificate on your website.9
  10. An option available in IIS is the SSL Settings which allows you to require SSL now whenever end users access for website on port 443. Since you already have SSL enabled on 443 it is better practice to disable access on port 80 or perform a port redirection so that requests are served only on port 443.10
  11. Notice we have this client certificate option, this is if we want to authenticate based upon a x.509 certificate that is installed on a client so we can have a machine based certificate or user base certificate and we would use that for authentication for them to come in and we can say you know ignore it accept it or actually require you.11




Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s