Deze pagina is nog niet beschikbaar in uw eigen taal. We werken er hard aan om meer taalversies toe te voegen. Bedankt voor uw steun.
Cloud Certificate Manager
Cloud Certificate Manager
- What's New
- Function Overview
- Service Overview
-
SSL Certificate Manager (SCM)
- About SCM and SSL Certificate Usage
- Purchasing an SSL Certificate
- Applying for an SSL Certificate
- Deploying SSL Certificates
-
Managing SSL Certificates
- Reissuing an SSL certificate
- Unsubscribing from an SSL Certificate
- Renewing an SSL Certificate
- Revoking an SSL Certificate
- Deleting an SSL Certificate from CCM
- Uploading an External Certificate to SCM
- Adding an Additional Domain Name
- Withdrawing an SSL Certificate Application
- Canceling Authorization for Privacy Information
- Pushing an SSL Certificate to Other Cloud Services
- Viewing Details About an SSL Certificate
- Viewing the Application Progress
- Permissions Management
- Change History
-
Private Certificate Authority (PCA)
- Overview of Private Certificate Application
- Private CA Management
-
Private Certificate Management
- Applying for a Private Certificate
- Downloading a Private Certificate
-
Installing a Private Certificate
- Trusting a Private Root CA
- Installing a Private Certificate on a Client
-
Installing a Private Certificate on a Server
- Installing a Private Certificate on a Tomcat Server
- Installing a Private Certificate on an Nginx Server
- Installing a Private Certificate on an Apache Server
- Installing a Private Certificate on an IIS Server
- Installing a Private Certificate on a WebLogic Server
- Installing a Private Certificate on a Resin Server
- Revoking a Private Certificate
- Viewing Details of a Private Certificate
- Deleting a Private Certificate
- Permissions Management
- Change History
- API Reference
-
FAQs
-
FAQs
-
Certificate Consulting
- What Are the Differences Between SSL Certificate Manager and Private Certificate Authority?
- Which Websites Require HTTPS?
- What Are the Differences Between HTTPS and HTTP?
- What Is a Public Key and a Private Key?
- What Are the Relationships Between a Public Key, Private Key, and Digital Certificate?
- Why Is a Non-Password-Protected Private Key Required?
- What Are Mainstream Formats of Digital Certificates?
- What Information Does an SSL Certificate Contain?
- Can I Use SSL Certificates for Other Regions, Accounts, or Platforms?
- Can I Use an Unused SSL Certificate Anytime I Want?
- Can SSL Certificates Be Upgraded?
- Does the SSL Certificate Have Restrictions on the Server Port?
- Why Is the Service Displayed as Inaccessible or the Button Displayed in Gray When I Access the SCM Service on the Console?
-
SSL Certificate Application and Purchase
-
SSL Certificate Selection
- Does SCM Provide Free Certificates?
- How Do I Select an SSL Certificate?
- How Can I Apply for a Free SSL Certificate?
- What Can I Do If My Free Certificate Quota Is Used Up?
- How Do I Query the Remaining Quota for Free SSL Certificates?
- How Do I Apply for an Entry-Level SSL Certificate?
- What Are Differences Between Free and Paid SSL Certificates?
- How Do I Apply for a Combination Certificate?
- Can I Change the Certificate Authority, Type, or Bound Domain After A Certificate Is Purchased?
- Problems Related to Certificate Purchases
- How Do I Apply for an SSL Certificate That Uses SM Series Cryptographic Algorithms?
-
About Required Domain Name Details
- How Do I Enter a Domain Name for a Certificate When Applying for an SSL Certificate?
- What Are the Differences Between a Single-Domain Name, Multi-Domain Name, and Wildcard-Domain Name in SCM?
- What Is the Relationship Between a Domain Name and an SSL Certificate?
- What Domains Can Wildcard-Domain Certificates Support?
- What Domain Name Should I Use to Apply for an SSL Certificate?
- Can I Change the Primary Domain Name Associated with a Certificate?
- Does the Relationship Between the Primary Domain Name and Additional Domain Name Have Any Impact on Domain Names?
- How Do I Make a CSR File?
- What Are the Differences Between the CSR Generated by the System and the CSR Made by Yourself?
- Domain-related Concepts
- Problems Related to Domains
-
SSL Certificate Selection
- SSL Certificate Approval
-
SSL Certificate Download, Installation, and Use
-
SSL Certificate Use
- Which Region Will a Certificate Be Deployed to When I Deploy an SSL Certificate in CCM to Other Cloud Product?
- Is HTTPS Automatically Enabled After an SSL Certificate Is Deployed to a Cloud Product?
- Why Is a Message Indicating that the Certificate Chain Is Incomplete Displayed When I Configure HTTPS on CDN?
-
SSL Certificate Use
-
Certificate Validity Period
- What Can I Do If My SSL Certificate Expired?
- How Long Is an SSL Certificate Valid?
- What Can I Do If an SSL Certificate Is About to Expire?
- How Long Does an SSL Certificate Take Effect After Being Purchased?
- Validity Periods and Replacement of the Current and New SSL Certificates
- How Can I Renew an SSL Certificate?
- Will Services Be Affected If an SSL Certificate Is Not Updated After It Expires?
- Validity Periods of Private Certificates
- How Long Will an Order Become Invalid If I Do Not Apply for a Certificate After Purchasing It?
- Certificate Management
-
Certificate Consulting
- Change History
-
FAQs
On this page
Help Center/
Cloud Certificate Manager/
Private Certificate Authority (PCA)/
Private Certificate Management/
Installing a Private Certificate/
Installing a Private Certificate on a Server/
Installing a Private Certificate on an IIS Server
Installing a Private Certificate on an IIS Server
Updated on 2023-12-19 GMT+08:00
This topic describes how to install a private certificate on an IIS server.
NOTE:
The installation procedure in this topic is for your reference only as the commands executed and configuration file modified during the installation may vary depending on OS types and server configurations.
Prerequisites
- The certificate has been issued.
- You have downloaded the private certificate in the format that is supported by IIS. For details, see Downloading a Certificate.
- You have used a system-generated CSR to apply for the certificate.
Constraints
- Before installing the certificate, enable port 443 on the server where the private certificate is installed and add port 443 to the security group. Otherwise, HTTPS cannot be enabled after the installation.
- A root CA must be added to the trusted client CA list so that all server certificates issued by the root CA can be trusted by the client. For details, see Trusting a Private Root CA.
- If a domain name maps to multiple servers, deploy the certificate on each server.
- A private certificate can only be installed on the server that maps to the domain name associated with the certificate. Otherwise, the web browser will display a message indicating that the domain name is insecure.
Procedure
To install a private certificate on an IIS server, perform the following steps:
Step 1: Obtaining Files → Step 2: Configuring IIS → Step 3: Verifying the Result
Step 1: Obtaining Files
Decompress the downloaded certificate file on your local PC.
You will obtain certificate file server.pfx and password file keystorePass.txt.
Step 2: Configuring IIS
- Install IIS as instructed by IIS guides.
- Open the IIS management console, double-click Server Certificates.
Figure 1 Double-clicking Server Certificates
- In the displayed dialog box, click Import.
Figure 2 Import
- Import the server.pfx certificate file. Then click OK.
NOTE:
In the Password box, enter the password provided in the keystorePass.txt file.
Figure 3 Importing a PFX certificate file
- Right-click the target site (the default site is used as an example). Choose Edit Bindings from the shortcut menu.
Figure 4 Choosing Edit Bindings
- In the dialog box that is displayed, click Add. Then enter the following information.
Figure 5 Binding a website
- Type: Select https.
- Port: Retain the default port 443.
- SSL certificate: Select the certificate imported in 4.
- Click OK.
Parent topic: Installing a Private Certificate on a Server
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
