Ask a Question

How to install Intermediate Certificate Authority (CA) certificates for Microsoft IIS and Exchange

Solution

This document will cover the installation of intermediate Certificate Authority (CA) certificates in IIS and Exchange.  If this document does not work with the server, RapidSSL recommends contacting an organization that supports Windows Server.

 

Step 1 - Download the intermediate certificate.  If the order was placed from a RapidSSL Security Center account the intermediate certificate will be delivered along with the server certificate.  If the server certificate was installed using a .P7B or .P7S file then the intermediate should have also been installed at that time.  To download the intermediate, please use the link below.

Step 2 - Create a Microsoft Management Console (MMC) Certificate Snap-In

Step 3 - Install the RapidSSL Intermediate CA Certificate file

  1. From the left pane, expand the Intermediate Certification Authorities folder
  2. Right-click on Certificates folder
  3. Click All Tasks then Import
  4. In the Certificate Import Wizard, click Next
  5. Click on Browse and locate the Intermediate CA Certificate file (The file downloaded in step 1)
  6. Click Next
  7. Select option Place all certificates in the following store
  8. Click Browse button and select Intermediate Certification Authorities
  9. Click OK
  10. Click Next
  11. Click Finish
     

Note: For IIS 6 and below, restart the web server (IIS Admin services) for the changes to propagate.  For IIS 7/7.5, a reboot or re-create of the HTTPS bindings is required for the settings to take effect.  Please click here for IIS 7 instructions on how to Add an HTTPS binding to a website.
 

Step 4 - Verify the installation of the certificate chain using the RapidSSL CryptoReport