Geotrust will email you the certificate. The certificate is located in the body of the email and will look similar to the below:
-----BEGIN CERTIFICATE-----
MIAGCSqGSIb3DQEHAqCAMIACAQExADALBgkqhkiG9w0BBwGggDCCAmowggHXAhAF
UbM77e50M63v1Z2A/5O5MA0GCSqGSIb3DQEOBAUAMF8xCzAJBgNVBAYTAlVTMSAw
(.......)
E+cFEpf0WForA+eRP6XraWw8rTN8102zGrcJgg4P6XVS4l39+l5aCEGGbauLP5W6
K99c42ku3QrlX2+KeDi+xBG2cEIsdSiXeQS/16S36ITclu4AADEAAAAAAAAA
-----END CERTIFICATE-----
Copy everything you see between and including the lines that look like
-----BEGIN CERTIFICATE-----
and
-----END CERTIFICATE-----
and paste it into an appropriately named text file e.g. myserver.crt
Step 1. Install the Server file certificate using Key Manager
- Go to Key Manager.
- Install the new IIS SSL Server certificate (e.g. myserver.crt) by clicking on the key in the www directory (usually a broken key icon with a line through it), and select "Install Key Certificate".
- Enter the Password.
- When you are prompted for bindings, add the IP and Port Number. "Any assigned" is acceptable if you do not have any other IIS SSL certificates installed on the web server.
Note: Multiple certificates installed on the same web server will require a separate IP Address for each because SSL does not support host headers. - Go to the Computers menu and select the option "Commit Changes", or close Key Manager and select "Yes" when prompted to commit changes.
- The new IIS SSL Server certificate is now successfully installed.
- Back up the Key in Key Manager by clicking on Key menu> Export -> Backup File. Store the backup file on the hard drive AND off the server.
Step 2. Installing the Root & Intermediate Certificates
Firstly, you need to download the CA certificates associated with your SSL certificate product (both Root CA certificate and Issuing CA certificate) as individual files. Click Here
ServicePack 3:
- Install the above certificates in your Internet Explorer by opening each certificate and clicking "Install Certificate".
- run %SystemRoot%\system32\inetsrv\iisca.exe to transfer all root certificates from your Internet Explorer to the IIS (see
- and then restart the machine.
ServicePack 4:
Install the above certificates manually in a specicfic root store (you may also want to read (see
- Install the Root CA certificate by double clicking on the corresponding file this will start an installation wizard
- select Place all certificates in the following store and click browse
- select Show physical stores
- select Trusted Root Certification Authorities
- select Local Computer, click OK
- back in the wizard, click Next, click Finish
Repeat the same for the Issuing CA certificate. This time however, choose Intermediate Certification Authorities instead of Trusted Root Certification Authorities.
ServicePack 5:
Same as SP4.
ServicePack 6:
Same as SP5.
Reboot the server for the certificates to propagate.
Firehost has made efforts to ensure the accuracy and completeness of the information in this document. However, Firehost makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. Firehost assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document.Disclaimer: