PositiveSSL Certificate Installation: Microsoft IIS 4.x

Installing your IIS SSL Certificateon Microsoft IIS 4.x

Step1. Install the Server file certificate using Key Manager

For Positive SSL certificate, You will be receiving the following files:

Root AddTrustExternalCARoot.crt
Intermediate CA UTNAddTrustServerCA.crt
Intermediate CA PositiveSSLCA.crt
domain/site certificate yourdomainname.crt
or click to download the PositiveSSL Root and Intermediate files

Goto Key Manager.

install the new IIS SSL Server certificate by clicking on the key in the wwwdirectory (usually a broken key icon with a line through it), and select "Install Key Certificate".

Enter the Password.

When you are prompted for bindings, add the IP and Port Number. "Any assigned" is acceptable if you do not have any other IIS SSLcertificates installed on the web server.
Note: Multiple certificates installed on the same web server will require a separateIP Address for each because SSL does not support host headers.

Goto the Computers menu and select the option "Commit Changes",or close Key Manager and select "Yes" when prompted to commit changes.

The new IIS SSL Server certificate is now successfully installed.

Backup the Key in Key Manager by clicking on Key menu> Export->Backup File. Store the backup file on the hard drive AND off the server.

Step2: Installing the Root & Intermediate Certificates:

Your IIS SSL Certificate will have been emailed to you. The email will also contain three other Certificates: AddTrustExternalCARoot.crt(ROOT certificate) , UTNAddTrustServerCA.crt (IntermediateCA certificate)andPositiveSSLCA.crt(IntermediateCA certificate).Save these Certificates to the desktop of the web server machine.

It is essential that you have installed these three Certificates on the machine running IIS 4. You may also download them from the supportsection of the website:

Once you have installed the Certificates, restart the machine running IIS 4. You must now complete one of the following procedures - the procedure you followis dependent on the Service Pack that has been implemented on your machine running IIS4.

Service Pack3:
Install the above certificates in your Internet Explorer by opening each certificate and clicking "Install Certificate". You may then use this IISCAbatch file to transfer all root certificates from your InternetExplorer to the IIS (see Microsoft Knowledge Base Q216339).

Service Pack4:
install the above certificates manually in a specific root store (you may also want to read (see Microsoft Knowledge Base Q194788):

  • Install the Root certificate by double clicking on the corresponding file this will start an installation wizard

  • select Place all certificates in the following store and click browse

  • select Show physical stores

  • select Trusted Root CertificationAuthorities

  • select Local Computer, click OK

  • back in the wizard, click Next, click Finish

Repeat the same for the UTNAddTrustServerCA.crt and PositiveSSLCA.crthowever choose to place the certificates in the Intermediate Certification Authoritiesstore.

Service Pack5:
Same ASSP4.

Service Pack6:
Same ASSP5.

Reboot the web server to complete the installation.

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

PositiveSSL Certificate Installation: Lotus Domino server

Installing your Certificate on a Lotus Domino Server versions 4.6x onwards You will be...

PositiveSSL Certificate Installation: C2Net Stronghold

Installing a Certificate on a Stronghold Server Note:There are three certificates that need to...

PositiveSSL Certificate Installation: Java-based webservers

Installing your Certificate on Java Based Web Servers you will receive 4 files in a zip file...

PositiveSSL Certificate Installation: Novell iChain

Installing your Certificate on Novell I-ChainYou will be receiving the following four files...

PositiveSSL Certificate Installation: Apache & mod_ssl / OpenSSL

Installing your Certificate on Apache Mod_SSL / OpenSSLStep one: Copy your certificate to a...