Showing posts with label How to purchase Certificate From cheapest SSL Security. Show all posts
Showing posts with label How to purchase Certificate From cheapest SSL Security. Show all posts

Monday, July 8, 2019

How to generate CSR, purchase SSL from cheapest SSL and Install On IIS


Generate a CSR from Microsoft IIS

  • Open Internet Information Services (IIS) Manager - Click Start, Control Panel, Administrative Tools, and then select Internet Information Services (IIS) Manager.
  • Open Internet Information Services (IIS) Manager - In the left Connections menu, select the server name (host) where you want to generate the request.
  • Navigate to Server Certificates - In the center menu, click the Server Certificates icon under the Security section near the bottom
  • Select Create a New Certificate - In the right Actions menu, click Create Certificate Request.
  • Enter your CSR details - In the Distinguished Name Properties window, enter in the required CSR details and then click Next.
    Note: To avoid common mistakes when filling out your CSR details, reference 
  • Select a cryptographic service provider and bit length - In the Cryptographic Service Provider Properties window, select Microsoft RSA Channel Cryptographic Provider and Bit Length of 2048, then click Next.
    Note: Bit Length: 2048 is the current industry standard. You may choose a larger key size, but only if you have a requirement to do so, as longer key lengths increase latency and may reduce compatibility.
  • Save the CSR - Click Browse to specify the location where you want to save the CSR as a “.txt” file and click Finish.
Purchase SSL Certificate from cheapsslsecurity.com

Generate SSL Certificate: go to the recent order and click on the certificate and

  • Chose the domain validation option “Email Authentication” for this you have the access of one of the following emails:
  1. admin@yourdomain.com
  2. administrator@yourdomain.com
  3. webmaster@yourdomain.com
  4. postmaster@yourdomain.com
  5. hostmaster@yourdomain.com
  • Input CSR (Certificate Signing Request)
  • Select Your Server(optional) – left this as default or select “Microsoft Internet Information Server”
  • Select the Signature Algorithm – choose SHA2
  • Click on the continue – this will send a verification email of the selected email in the step Verify the verification – please verification by clicking the link received in the mail
  • Get SSL Certificate – You will receive a SSL certificate in the Mail

Install an SSL certificate on IIS
  • Press Win + R and type “inetmgr” in the appeared window to run the Internet Information Services (IIS) Manager.
  • On the IIS Manager home page, locate the “Server Certificates” icon and double-click it:

  • Locate the “Actions” panel on the right side and click “Complete Certificate Request”:
  • In the “Specify Certificate Authority Response” window, perform the actions below.
  1. In the “File name containing the certification authority’s response” field, browse the file system to select your .p7b (or .cer) certificate.
  2. In the “Friendly name” field, specify any name that will help you to identify the certificate among other files. It is best to submit the actual domain name of the certificate.
  3. In the “Select a certificate store for the new certificate” field, leave the default value “Personal”.
  • Click “OK” to import the certificate to the server storage.
  • Once the import is completed, in the “Server Certificates” window, you will see a new entry associated with the imported certificate:
  •  Assign the certificate to your website by expanding the “Sites” subsection in the “Connections” menu on the left and select the corresponding site. Then, in the “Actions” panel on the right side, locate the “Edit Site” menu and select the “Bindings” option:
  • On the right side of the “Site Bindings” window, click “Add”: 
  • In the “Add Site Binding” window, modify the fields as below:
  1. In the “Type” field, select “https”.
  2. In the “IP address” field, select your website’s IP address or “All Unassigned”.
  3. In the “Port” field, specify “443” (default).
  4. In the “SSL certificate” field, select the previously imported certificate, which can be identified by the friendly name:
    NOTE: The “Require Server Name Indication” box needs to be checked if there are multiple SSL certificates on the server.
  • Click “OK” in order for the new “https” entry to appear in the “Site Bindings” window:
  • That’s all - the certificate should now be installed and the website should be accessible via HTTPS.