Need help?

Our experts have had an average response time of 13.52 minutes in October 2021 to fix urgent issues.

We will keep your servers stable, secure, and fast at all times for one fixed price.

Install SSL Certificate in IIS 7 Windows 2008 server

by | Feb 15, 2021

Don’t know how to install SSL certificate in IIS 7 windows 2008 server? We can help you.

Windows Server 2008 (IIS 7) is one of the widely used, and we are getting many queries regarding SSL installation on it.

As a part of our Server Management Services, we assist our customers with several SSL queries.

Today, let’s see how our Support Engineers do this for our customers.


What is IIS?

Internet Information Services(IIS) is a web server that runs on the Microsoft .NET platform on the Windows OS.

It’s stable and versatile, and it’s been widely used in production for many years.

IIS 7 and above are the product name used for referring to the versions of Internet Information Services (IIS).


How we generate CSR for installing SSL certificate in IIS 7

Recently, one of our customers approached us with the request to install an SSL Certificate in the IIS 7 Windows 2008 server.

In order to begin, first, we have to generate CSR.

To do the same, we follow the below steps:

  1. Open the IIS manager.
  2. Then, select the server node in the treeview and double-click the Server Certificates feature in the list view. install SSL Certificate in IIS 7
  3. Then, from the Actions pane on the top right, we select Create Certificate Request. Now the Distinguished Name Properties dialog box opens.
  4. There, we fill in all the details and click OK.
  5. The next screen of the wizard will ask to choose cryptography options. The default Microsoft RSA SChannel Cryptography Provider is fine and a key bit-length of 2048.
  6. Finally, we specify a file name for the certificate request and save it to a location.
  7. At last, using the CSR generated we purchase a Certificate.


Steps for Installing the SSL certificate in IIS 7

Next is Installing the certificate. Given are the steps we follow to perform the installation.

  1. Firstly, open the ZIP file containing our certificate. Then, save the file our_domain_name.cer to the desktop of the web server we are securing.
  2. Next, click on Start >> Administrative Tools>> Internet Information Services (IIS) Manager.
  3. Then, click on the server name.
  4. From the center menu, we double-click the “Server Certificates” button in the “Security” section.
  5. Then, from the “Actions” menu, click on “Complete Certificate Request.” This will open a Complete Certificate Request wizard.
  6. Browse our_domain_name.cer file and enter a friendly name.
  7. Click “OK” will install the certificate to the server.
  8. Once done, our Engineers assign that certificate to the appropriate website using IIS.
  9. From the “Connections” menu in the main Internet Information Services (IIS) Manager window, we select the name of the server to which the certificate was installed.
  10. And, under “Sites,” we select the site to secure with SSL.
  11. After that, from the “Actions” menu, click on “Bindings.” This opens the “Site Bindings” window.
    In the “Site Bindings” window, clicked “Add…”. Which will open the “Add Site Binding” window.
  12. Under “Type”, choose https. T. The “SSL Certificate” field should specify the certificate that was installed in the step before.
  13. Click ”OK.”
  14. Hence, the SSL certificate is installed, and the website configured to accept secure connections.


Few common errors

Moving ahead, let us have a look at a few errors we may come across during these processes.

  • Cannot find the certificate request associated with this certificate file.

This error occurs when we try to install a certificate using Microsoft Internet Information Services (IIS) 7.0 Manager.

We may come across either of these messages:

Error message 1:

Cannot find the certificate request associated with this certificate file. A certificate request must be completed on the computer where it was created.

Error message 2:

There was an error while performing this operation
Details: CertEnroll::CX509Enrollment::p_InstallResponse: ASN1 bad tag value met.
0x8009310b (ASN:276)

The certificate is installed correctly despite the error message.

This issue occurs because the IIS Manager performs a lookup operation to look for a friendly name of the certificate during the installation.

However, the code that performs this lookup operation misses this specific case, and it does not know how to retrieve the friendly name of a certificate in a PKCS#7 file. That is why the lookup operation fails, and we receive the error message.

To resolve this problem, add a friendly name to the certificate:

  1. Select Start >> Run, certmgr.mmc >> OK.
  2. Select File >> Add/Remove Span-ins >> Certificates >> Add >> OK.
  3. Then select Computer account >> Next >> Finish >> OK.
  4. Expand Certificates (Local Computer), and Personal, and then Certificates.
  5. Right-click the certificate, and then select Properties.
  6. Edit the Friendly name field.
  • The request or private key cannot be found

While installing an SSL certificate using IIS 7.0, we may also receive the error:

The request or private key cannot be foundThe request or private key cannot be found

An incorrect certificate or server mismatch can cause this error.

In such a case, make sure we use the correct certificate and that we are installing it to the same server that we generated the CSR on.

However, if we are sure of those two things, we may just need to create a new Certificate Request and reissue/replace the certificate.

[Need assistance in installing IIS? We’ll help you.]



In short, we discussed in detail how to install SSL Certificate in IIS 7 windows 2008 server and saw how our Support Engineers help customers in installing it.


Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.


var google_conversion_label = "owonCMyG5nEQ0aD71QM";


Submit a Comment

Your email address will not be published. Required fields are marked *

Privacy Preference Center


Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.

PHPSESSID - Preserves user session state across page requests.

gdpr[consent_types] - Used to store user consents.

gdpr[allowed_cookies] - Used to store user allowed cookies.

PHPSESSID, gdpr[consent_types], gdpr[allowed_cookies]


Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.

_ga - Preserves user session state across page requests.

_gat - Used by Google Analytics to throttle request rate

_gid - Registers a unique ID that is used to generate statistical data on how you use the website.

smartlookCookie - Used to collect user device and location information of the site visitors to improve the websites User Experience.

_ga, _gat, _gid
_ga, _gat, _gid


Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.

IDE - Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

test_cookie - Used to check if the user's browser supports cookies.

1P_JAR - Google cookie. These cookies are used to collect website statistics and track conversion rates.

NID - Registers a unique ID that identifies a returning user's device. The ID is used for serving ads that are most relevant to the user.

DV - Google ad personalisation

IDE, test_cookie, 1P_JAR, NID, DV, NID
IDE, test_cookie


These are essential site cookies, used by the google reCAPTCHA. These cookies use an unique identifier to verify if a visitor is human or a bot.