First, install SSL certificates environment
1.1 SSL certificate installation environment Introduction
Install windows server 2008 IIS7.0 a server operating system,
a web site
A SSL certificate
1.2 Network Requirements
Make sure that the site is a legitimate domain name address outside the network can be accessed by normal or http: // XXX normal visit.
Second, the introduction of the SSL certificate
2.1 obtain SSl certificate
After the successful applicants SSL certificate, you get a password archive file, enter the certificate password unpack five files:
for Apache, for IIS, for Ngnix, for Other Server, this is some form of the certificate for IIS extract the archive, will get a certificate www.xxx.com.pfx format need to use pfx format on IIS7.0 certificate.
figure 1
2.2 Importing SSL Certificates
Start -> Run -> MMC, start a console program -> select the menu "File -> Add / Remove Snap-in" -> list, select "Certificates" -> click "Add" -> select "Computer Account" -> Click carry out. Displays the certificate tree list, select the "personal" in the left side of the console - "certificate", right-click, select "All Tasks -> Import", follow the prompts "Certificate Import Wizard" will import the .pfx file format. " automatically selects the storage area, "according to the certificate content. After (Note that this option is checked during the import process, and requires a password) into, you can see the certificate information as shown in FIG. 2
figure 2
2.3 distribution server certificate
Open IIS7.0 Manager panel, find the certificate to be deployed sites, click on the "binding" in Figure 3
image 3
2.4 Setting parameters
Select "binding" -> "Add" -> "Type Select https" -> "Port 443" -> "ssl import certificate [certificate name]" -> "OK", SSL default port is port 443 ( Do not tinker If you use other ports, such as: 8443, must be entered to access: https: //www.domain.com: 8443). Figure 4
Figure 4
2.5 test whether the installation is successful
重启 IIS7.0 服务,在浏览器地址栏输入:https://www.yourdomain.com (申请证书的域名)测试您的SSL证书是否安装成功,如果成功,则浏览器下方会显示一个安全锁标志。请注意:如果您的网页中有不安全的元素,则会提供“是否显示不安全的内容”,赶紧修改网页,删除不安全的内容(Flash、CSS、Java Script 和图片等)。
备注:安装完ssl证书后部分服务器可能会有以下错误,请按照链接修复
a. 加密协议和安全套件:
b. 部署https页面后出现排版错误,或者提示网页有不安全的因素,可参考以下链接: https://www.cnblogs.com/61007257Steven/p/11262355.html