[thelist] How to add SSL to IIS4

Hey Matt, I didn't see any followup, so here ya go (using Verisign):

(I'm sure Mr. Baratta can add in the changes for IIS 5)

steps:
1) Generate a CSR (key request)
2) Take the CSR to your Certificate Authority (we use Verisign here; Thawte
is also recognized. IIS's documentation can get confusing --you don't need
to install Cert Server unless you are playing the role of Verisign or
Thawte)
3) pay your $$
4) install the certificate when you get it
5) set up port 443 on your site

1) Generate CSR: Open the Key Manager  (from inside the Internet Services
Manager) and create a new key, going through the steps. Be very meticulous
about the information you use here, as it can be legally binding! --Verisign
requires that the name of the Organization be *identical* to the name of the
Registrant of the domain name. --Your state is spelled out, no
abbreviations. --write down everything you put into it and save in a safe
place

2) With Verisign, you paste in the CSR, and then finish filling out some
information, most notably the contact information so Verisign can followup
the legitimacy of the request; it *must be* a person from the Organization
in step (1).

3) $350 for your first (from Verisign), $250 each after that. I know Thawte
is a little cheaper though ...

4) You'll get it in email, open up the Key Manager and install the
certificate. You'll have to know the cert's password

5) right click on the web site instance that you'll use it on, and hit
properties. in the Web site tab, hit the Advanced button next to the IP
address, and add an SSL port (443)



that's it, really ....
sgd
--
think safely