MarinerEnterprises ISP HOSTING DESIGN Members Only

Certificate Installation Instructions for Microsoft Internet Information Server 5

About Our SSL Certificates
SSL PRATICES STATEMENT
Quick SSL FAQ

Generate SSL CSR Apache
SSL LINUX Apache Mod SSL INSTALL
Generate SSL CSR Microsoft IIS 4.0
SSL Install Microsoft IIS 4.0
Generate SSL CSR Microsoft IIS 5.0
SSL Microsoft IIS 5.0
Generate SSL CSR RAQ
SSL RAQ Install

Installing your Web Server Certificate

Select the Internet Information Service console within the Administrative Tools menu.

Select the web site (host) for which the certificate was made.
Right mouse-click and select Properties.

Select the Directory Security tab.

Select the Server Certificate option.

The Welcome to the Web Server Certificate Wizard windows opens.
Click OK.

Select Process the pending request and install the certificate.
Click Next.

Enter the location for the certificate file at the Process a Pending Request window. The file extension may be .txt or .crt instead of .cer.

After the correct .crt file is selected, click Next.

Verify the Certificate Summary to make sure all information is accurate.
Click Next.

Select Finish.

Select Web Site at the site Properties window to edit your SSL Port 443 settings for this web server. Click OK.

Stop and Start the selected site.

Test your certificate by connecting to your server.
Use the https protocol directive (e.g. https://your server/) to indicate you wish to use secure HTTP.

Note: The padlock icon on your Web browser will be displayed in the locked position if you have set up your site properly. Backing up your key pair file

Creating your Snap-in Management Console

Certificate Snap-in consoles (MMC) are not preconfigured. You will need to configure the Snap-in before you can perform any Export/Import functionality. To configure your Snap-in, follow the steps below. The system administrator will have to create the console.

Go to Start. Select Run, Type mmc and click OK. This will bring up an empty console with no management functionality.

Click on Console select Add/Remove Snap-in.

The Snap-ins added to box will list only the Console Root. Click Add.

Select Certificates and then click Add.

Select Computer Account.

Click on Finish.

Click Close.

Click on OK.

Managing your certificates

Go to the Microsoft Management Console (MMC) for Snap-in Certificates.

Select the folders Console Root\Certificates(Local Computer)\Personal\Certificates.

Right click on the certificate to export.

Select All Tasks and Export.

The Welcome to the Certificate Manager Import Wizard window opens.
Click Next.

Select Yes, export the private key. Click Next.

Make sure the Personal Information Exchange- PKCS # 12(.PFX) box is selected.

Warning: Make sure that the "Delete the private key if the export is successful" is NOT checked.

Check the box Enable strong protection requires IE5.0, NT4.0 SP4 or above. Select Next.

Type and confirm your export password.
Warning: If you lose the password, you must purchase another certificate.

Save the file to a disk or other form of media. You should choose a form of media that you would be able to recover if your system has to be rebuilt. Save this file in a secure location.

*** Microsoft has an alert addressing a problem with exporting and importing certificates.***

Service Pack 2 is supposed to correct this problem. There is also a hotfix that may be obtained from Microsoft that must be run prior to exporting and importing your certificate. Please go to the following URL for more information or email us at ssl.tech@equifax.com.

http://support.microsoft.com/support/kb/articles/Q261/6/55.ASP

Mariner Enterprises.

Mariner Enterprises
1270 Taramore Dr
Suwanee, Ga. 30024
1.800.438.6894 - +1.770.232.7646
All logos and trademarks in this site are:
© 1998/2003 by LSYF/YOA- © 2004/ 2005 by Mariner Enterprises

Hosting and Design by Mariner Enterprises.