HTTPS For IIS v8.5
Description:
I followed these steps to enable HTTPS on some of our websites. NOTE: We already had a wildcard SSL cert purchased prior to me running these steps.
To Resolve:
-
Inside IIS Manager, go to “Server Certificates” and choose the option to “create a request”. Fill out the information:
1 2 3
common name = FQDN of the server organization = Company Nameorganizational unit = IT city/ state/ province = self explanatory
-
Click Next => Choose: Microsoft RSA and 2048 bit length => Next => Export to desktop (we will delete shortly).
-
Open up web browser and go to Digicert.com and sign in. Go to Orders => click on your domain wildcard cert => Get a duplicate.
-
Paste in your key from step 2. It will say to wait a few minutes, and then you can download your keys.
-
Once you download them to your server, open IIS Manager => Server Certificates => Complete Request. Fill out the information:
1 2 3
filename = path\to\file friendly name = your domain name select store = personal
-
Once the cert is installed, go to your site in the list of websites in IIS Manager. Select “bindings” and add 443 with your cert. I usually check the box for “require server name indication” and type out the FQDN of the server.
-
Next, we create an inbound rule under URL Rewrite (If it’s not there, install from here):
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16
name = http to https Match URL: Requested URL: Matches the pattern Using: Regular Expressions Pattern: (.*) Ignore case = checked Conditions: Logical grouping: Match All Input: {HTTPS} Type: Matches the Pattern Pattern: ^OFF$ Action: Action Type: Redirect Redirect URL: https://{HTTP_HOST}/{R:1} Append query string = Checked Redirect Type = Permanent (301) -
Restart the website, it should start redirecting to HTTPS now. You may want to enable SSL Rebind, but I didn’t go that far.
References:
“Step 1: Create Your CSR in IIS 8 or IIS 8.5 on Windows Server 2012”
“Step 2: Install and Configure Your SSL Certificate in IIS 8 or IIS 8.5 on Windows Server 2012”
Comments