TUTORIAIS E PROCEDIMENTOS
Associando um Certificado a um site no IIS
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 1 de 6
The Export
The first thing to do is export your key from your IIS 6.0 Server, Windows 2003 (the
steps are very similar in Windows 2000, IIS 5.0, however the screen shots are from IIS
6.0) as a .pfx file. Here are the steps:
1. Login into your Windows 2003, IIS 6.0 server as an Administrator
2. Open the IIS Manager.
3. Navigate to the web site that has the SSL certificate installed.
4. Right click and choose Properties
5. Find the Directory Security Tab and choose it.
6. Click on the Server Certificate button near the bottom.
7. A Certification Wizard will appear, Click Next to bypass the "Welcome Screen."
8. Now you should see a wizard page like this:
9. If you don't see this exact page, then you do not have your SSL certificate
installed. Install your SSL certificate first then re-due these steps. Another reason
you might not see this page is that you chose the wrong web site in step #3
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 2 de 6
10. Choose "Export the current certificate to a .pfx file" from the radio buttons and
press next.
11. In the next wizard page, choose a file location and save your .pfx file.
The Import
Now we need to return to the ISA firewall and import the SSL certificate. We need to add
the certificate to the machine certificate store; not a user certificate store and not a
service certificate store. It must be added to the local machine certificate store.
1. First thing to do is copy the saved file to the ISA firewall.
2. From the Start Bar, choose Start, Run, then enter mmc and press ENTER.
3. An empty Microsoft Management Console should appear.
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 3 de 6
4. From the Menu Bar of MMC choose File then Add/Remove Snap In.
5. The Add/Remove Snap-In dialog will appear, then press the Add… on the
Standalone Tab.
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 4 de 6
6. The Add Standalone Snap-in dialog will appear, choose Certificates from the SnapIn List and press Add.
7. The Certificates snap-in wizard will appear choose Computer account and press
Next.
8.
9. From the next wizard page choose Local Computer:
Click Finish, Close, then OK, until you are back at the Microsoft Management
Console Interface with the Certificates snap-in added.
10.
Expand the Certificates snap-in, the branch named Personal, and then the
Certificates branch of Personal
11. Right click on Certificates and choose All Tasks, then Import…
12. The Certificate Import Wizard will appears, press Next to get past the Welcome
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 5 de 6
page.
13. The second page will ask for the .pfx file that you exported from IIS. Find the file
and press "Next"
14. On the next page enter your password for the certificate. This is the password you
used when you created the certificate on your IIS server for the every first time.
Note that in none of the steps above you provide a password -- this is because
passwords are not provided on exportation, they are done on creation. If you have
forgotten your password you need to completely rebuild the SSL certificate on your
IIS box, reapply for another one from the certificate authority, apply the certificate
they give you and export the new certificate -- following all the steps again.
15. On the next wizard page, follow the defaults and choose "Place all certificates in
the following store" and choose Next.
Press finish on the final page to complete the importation of your certificate.
Comodo Brasil Tecnologia - www.comodobr.com
Rua Visconde de Pirajá, 04/702 – Ipanema – RJ - 22410-000
Tel: 21 3527-0171 / 11 4063-7724 / 31 4062-7422 / 41 4063-8177
Página 6 de 6