Simplistic, works for me, in my given scenario.
Create Certificate Request:
From the IIS server needing the new certificate, open IIS Manager:
- In the left window pane, select the server. - In the center window pane, select "Server Certificates". - In the right window pane, select "Create Certificate Request". - Enter the information in the pop up window. - Cryptographic Service Provider: "Microsoft RSA SChannel Cryptographic Provider" - Bit Length: 2048 - Provide a path and a name for the request certificate: C:\Users\Me\Desktop\csr.txt
The copy/paste the csr.txt text in the request form in the certificate authority’s web interface, or submit the request file to the certificate authority.
Install the SSL Certificate:
Once the certificate authority has provided you with the new certificate, log back onto the IIS server that you created the request on and open IIS Manager:
- In the left window pane, select the server. - In the center window pane, select "Server Certificates". - In the right window pane, select "Complete Certificate Request…". - In the pop up window: Select the new certificate. Add a friendly name to help ID it. Select "Web Hosting".
Bind to the new certificate to the web site:
- In the left window pane, select the web site Possibly "Default Web Site", or maybe not. - In the right window pane, select "Bindings…". - In the "Site Bindings:" pop up, choose add or edit. I'm doing edit here. - Select "HTTPS" and click the "Edit" button. - Select the new certificate. - In the right window pane, restart the service.
Use a web browser to check the site and the new certificate expiration date.