You Are Here:

United Kingdom Home > Support > SSL Certificates Support > Installation Instructions- Microsoft IIS 4.0 Server

SSL Certificates Support

SSL Support Information Generate a Certificate Signing Request (CSR) Enrolment Installation Instructions Backup a Certificate Move a Certificate

Installation Instructions- Microsoft IIS 4.0 Server

This document provides instructions for installing SSL Certificates. If you are unable to use these instructions for your server, VeriSign recommends that you contact either the vendor of your software or an organisation that supports IIS 4.

Step 1: Install CA Certificate

Secure Site

If you are installing a Secure Site Certificate, you need to first install the Secure Site Intermediate CA Certficate.

Secure Site Pro

If you are installing a Secure Site Pro Certificate, you need to first install the Secure Site Pro Intermediate CA Certficate .

1. Download the SGCinst.exe utility file at: ftp://ftp.microsoft.com/bussys/winnt/winnt-public/misc/sgcinst/x86/sgcinst.exe
2. Copy the SGCinst.exe file into the same web server directory that includes your certificate text file.
3. Open an MS DOS prompt window, change directory (cd) to the directory that includes both files and type in this command:  
    
   sgcinst.exe 'file name of certificate emailed from VeriSign' -i -o 'outputfile name, such as cert.txt'  
    
   NOTE: The certificate that is emailed from VeriSign includes your Server ID ("output file") and the VeriSign Intermediate CA file. The -i option copies the VeriSign Intermediate CA file into the Registry of your web server, and the -o option directs your Server ID to an output file (cert.txt).]

Step 2: Install the SSL Certificate

VeriSign will email you your certificate. If the certificate is an attachment (Cert.cer), you can use the file. If the certificate is in the body of the email, copy and paste it into a text file (such as OriginalCert.txt) using Vi or Notepad. Do not use Microsoft Word or other word processing programs that may add characters. Confirm that there are no extra lines or spaces in the file.

1. Open the Microsoft Management Console (MMC) for IIS. This is normally reached by selecting Start -> Programs -> Windows NT 4.0 Option Pack -> Microsoft Internet Information Server -> Internet Service Manager.
2. Expand the Internet Information Server folder by selecting the "+" sign and then select the "+" sign next to the computer name.
3. Locate the website that is going to be using the SSL Certificate. This is usually the "Default Web Site". Right click on the website and choose "Properties".
4. In the "Properties" window, choose the "Directory Security" tab.
5. You should see "Secure Communications" and next to it is the "Edit button". Click on it and then click the "Key Manager" button.
6. Install the new Server ID by clicking on the key in the www directory (usually a broken key icon with a line through it), and select "Install Key Certificate".
7. Enter the Password.
8. When you are prompted for bindings, add the IP and Port Number. "Any assigned" is acceptable if you do not have any other certificates installed on the web server. Multiple certificates installed on the same web server will require a separate IP Address for each because SSL does not support host headers.
9. Go to the Computers menu and select the option "Commit Changes", or close Key Manager and select "Yes" when prompted to commit changes.
10. The new Server ID is now successfully installed. You may need to reboot the web server if necessary.

Microsoft IIS 4.0

For more information, see the Microsoft Knowledgebase.