I'm an IT generalist managing a server with door control software on Windows Server 2019. We're trying to set up an integration with an external service that requires access to our server software's API, which mandates an x509 SSL certificate to be installed and bound to a specific port. I've enabled IIS, assigned an external IP to the server for one port, and created a DNS record. I generated a CSR using the FQDN and purchased a standard SSL certificate from GoDaddy. Now, I've downloaded the certificate, which contains a .crt file and three .pem files, but I'm confused about how to properly install the certificate. Some suggestions mention using various tools like certificate management utilities or the MMC console, but I'm not sure which method to follow or how to check if the installation is correct. I need some guidance on getting this set up quickly!
1 Answer
To install the certificate, just double-click on the .crt file, which should have the private key embedded. During the wizard, select 'Install Certificate' and choose to install it to the machine store. After that, go to IIS and select the certificate you just installed to bind it to the appropriate port.
I did that, but now I need to install an intermediate certificate as per GoDaddy's instructions. They provided a .crt and three .pem files. Do I need to convert the .pem files? Is the intermediate cert really necessary?