Use the DigiCert Certificate Utility to Install Your SSL Certificate on Your Server

After DigiCert has validated your order and has issued the SSL Certificate, you can use the DigiCert® Certificate Utility for Windows, to install the certificate file to your Microsoft server.

If you have not yet created a CSR and need a simple way to create it, see the CSR Creation Instructions for Microsoft Servers.

How to Import an SSL Certificate to Your Microsoft Server

  1. On the Windows server or workstation where you created the CSR, open the ZIP file containing your SSL Certificate and save the contents of the file (i.e. your_domain_com.cer) to the folder where you saved the DigiCert Certificate Utility executable (DigiCertUtil.exe).

  2. Run the DigiCert® Certificate Utility for Windows.

    Double-click DigiCertUtil.

  3. In DigiCert Certificate Utility for Windows©, click SSL (gold lock)and then, click Import.

    Import an SSL Certificate

  4. In the Certificate Import wizard, click Browse to browse to the .cer certificate file (i.e. your_domain_com.cer) that DigiCert sent you, select the file, click Open, and then, click Next.

    Certificate Import wizard

  5. In the Enter a new friendly name or you can accept the default box, type a friendly name for the certificate.

    Note:    The friendly name is not part of the certificate; instead, it is used to identify the certificate.

    We recommend that you add DigiCert and the expiration date to the end of your friendly name, for example: yoursite-digicert-(expiration date). This information helps identify the issuer and expiration date for each certificate. It also helps distinguish multiple certificates with the same domain name.

    Certificate Import wizard

  6. To import the SSL Certificate to your server, click Finish.

    You should receive a message that the certificate was successfully imported. You should now see your SSL Certificate in the DigiCert Certificate Utility for Windows©, under SSL Certificates.

    Import an SSL Certificate

  7. You must now configure your Microsoft server to use this SSL Certificate.


Assign & Configure Server Software to Use the SSL Certificate

After you have imported the SSL Certificate, you need to configure your Microsoft server to use it to secure your website or email connections. Follow the instructions for your specific server platform.

IIS 10 Exchange 2016 Office 365
IIS 8/8.5 Exchange 2013 SharePoint 2013
IIS 7 Exchange 2010 SharePoint 2010
IIS 5/6 Exchange 2007
Exchange 2003

Export an SSL Certificate

If you need to export an installed SSL certificate from a Microsoft server type with its corresponding private key as a .pfx file to use either as a backup or for importing to another server, see DigiCert SSL Cert Util SSL Import/Export Instructions.

Test Your Installation

To verify that the installation is correct, use our DigiCert® SSL Installation Diagnostics Tool and enter the DNS name of the site that you are securing to test your SSL Certificate (i.e., or