SSL provides visitors to your website with the confidence to communicate securely via an encrypted session. For companies wishing to conduct secure e-commerce, such as receiving credit card numbers or other sensitive information online, SSL is essential.
For SSL to work a valid signed SSL certificate is essential. Certificates are a standard way of binding a public key to a name. Public key encryption is a tactic that uses a pair of asymmetric keys for encryption and decryption. Each pair of keys consists of a public key and a private key. The public key is made public by distributing it widely. The private key is never distributed; it is always kept secret. Data that is encrypted with the public key can be decrypted only with the private key. Conversely, data encrypted with the private key can be decrypted only with the public key. This asymmetry makes public key cryptography so useful.
You can generate a self-signed certificate and use it for some time until the certificate “signed” by a trusted external authority
VeriSign certificate authority
or
And it will be ready.
To enable SSL for your website with self-signed certificate:
- Click on the Site tab;
- Select Website Settings. Your website General Settings appear on the screen;
- Click the Secure Website tab. The secure website summary appears on the screen;
- Click the Generate a Request button. The certificate-request form appears on the screen;
- Fill the form:
- Select your country of residence from the Country drop-down menu. If needed, scroll the list;
- Select your State from the State (US or Canada) drop-down menu;
- Or type your State in the State (other countries) textbox;
- Type your city or town of residence in the Locality textbox;
- Type your company name in the Organization name textbox;
- You can optionally type your company branch or affiliate name in the Organization unit name textbox;
- Type your website name in the Site name textbox;
- Click the Submit button. The updated secure website summary appears on the screen: now both the certificate request and private key exists, but the secure website is not available because the SSL certificate is absent;
Note: Do not forget to backup your private key: click the SSL private key details link (the private key content will appear in popup window) and copy your private key content to a file.
7. Click the Generate the SSL Certificate button. In a few seconds the screen reloads with the updated secure website summary: now the certificate is in place and the secure website is available;
8. Click the Enable SSL button.
To send a certificate request to an external certificate authority (if certificate request is already generated and the private key saved, as described in steps 1 -7 above):
- Click on the Site tab. Website general settings appear on the screen;
- Select Secure Website tab. The secure website summary appears on the screen;
- Click the SSL certificate request details link. The content of certificate request appears in the popup window;
- Copy the certificate request content in a file and send it to the certificate authority.
To import an SSL certificate signed by a certificate authority:
- Click on the Site tab;
- Select Website Settings. Your website general settings appear on the screen;
- Click the Secure Website tab. The secure website summary appears on the screen;
- Click the Install the SSL Certificate button. The form for SSL certificate importing appears on the screen;
- Do one of the following:
- Type the path to a file containing the SSL certificate in the Certificate file name textbox or click the Browse button to locate the file;
- Or paste the certificate content in the Certificate content textbox;
- Click the Submit button. The secure website summary appears on the screen;
- Click the Enable SSL button.
To import both your backup SSL certificate and private key:
- Click on the Site tab;
- Select Website Settings. Your website general settings appear on the screen;
- Click the Secure Website tab. Secure website summary appears on the screen;
- Click the Install the SSL Files button. The form for both the SSL key and certificate importing appears on the screen;
- Submit the key and certificate:
- Type the path to a file containing the private key the Private key file name textbox (click the Browse button to locate the file) or paste the private key content in the Private key content textbox;
- Type the path to a file containing the SSL certificate in the Certificate file name textbox (click the Browse button to locate the file) or paste the certificate content in the Certificate content textbox;
- Click the Submit button. The secure website summary appears on the screen;
- Click the Enable SSL button.
Notes:
Netscape and Mozilla browsers automatically detect whether a website uses encryption of transmitted data or not (as for Internet Explorer, please encourage your website visitors who use IE to use Internet Explorer 5.0 or later). Thus, if you use a self-signed certificate, your website visitors will be notified that your website uses encryption, but the authority that signed a certificate is not recognized. So if you intend to conduct e-commerce at your website, it is better to obtain an SSL certificate signed by VeriSign or Thwate.
Secure website can be enabled only for IP-based website (i.e., a website that does not share an IP address with other websites). So if you have several websites on your server and only one IP address – any of these sites (but only one of them) can be SSL-capable. Go for GeoTrust Power Server ID Wildcard Certificate.
If you have any question, query or feedback than please send us at TheSSLStore.com
Watch the video related to SSL certificate
www.digicert.com In this step-by-step tutorial we will show you how to install an SSL Certificate in Microsoft IIS 5 and 6 (up to Windows Server 2003). We will walk you through downloading the SSL Certificates, processing the pending request, and verifying that it is working properly. For more information, visit http
Help answer the question about SSL certificate
Is it possible to create my own SSL certificate for my pubic website?Is it possible to create my own, self-signed, SSL certificate for my pubic website?
Maybe using OpenSSL?
About Author
Buy SSL certificate of Verisign, GeoTrust and Thawte brands.
Tags: 5-6, Certificate, DigiCert, IIS, Installation, Microsoft, SSL
It's a multifaceted answer because you first need to determine if you want a third party as a Trusted Authority, such as Verisign or Thawte. If you're selling anything on your site, definitely get a trusted third party involved in order for others to trust you. If you use that process, follow the third parties instructions on how to do it (they all have detailed information on their sites).
If not, follow the instructions linked below. You'll first need the certificate server to self sign the certificates and then need to generate and approve it yourself.
Good luck,
WG
Having worked for a large "Certificate Authority" for 6+ years, I used to always encounter folks in your situation needing to know this little bit of info….and I would always direct them to this MS Support article: http://support.microsoft.com/kb/239875
Oh, definitely yes! If it's a credit card, all the standard credit-card protections apply. Namely, even if someone does steal the credit card number and make fraudulent purchases, you won't have to pay for those purchases. So credit card purchasing is inherently safe, no matter how much encryption (or how little encryption) is used.
buy an ssl from godaddy
———————————————-
wow, yeah yahoo is expensive…
and godaddy has far less issues with customers
and service then yahoo.
I would give godaddy a call, since you are hosted
with them you can set up an ssl very quick and
easy…and lots less then yahoo
Having worked for a large "Certificate Authority" for 6+ years, I used to always encounter folks in your situation needing to know this little bit of info….and I would always direct them to this MS Support article: http://support.microsoft.com/kb/239875
It looks like your web site is misconfigured to require identification from the client browser. Usually it is the other way around, the browser requires certification by the server.
You may want to brush up on the basic concepts of SSL, public key encryption and chains of trust (as it relates to certificate authentication).
The other translators missed a couple of items.
Are you looking for a reliable web hosting company to get your business website online? If so, you should know that besides the common features which all web hosting services provide for their customers, a business web host must offer two additional important features. These two features are mentioned below:
Shopping cart:
With a Shopping Cart, you can accept PayPal® and credit cards via your secure site. This software allows online shopping customers to place items in the cart.
SSL Certificate:
People are getting smart about online security. Today most of them are looking for the padlock icon and “https” prefix in the address bar of their browser before submitting personal information online. SSL Certificates encrypt your customer's payment information before it is transmitted across the internet to your Shopping Cart. If your Web site doesn’t have an SSL Certificate, visitors may leave before making a purchase or creating an account.
Text Changed:
With a Shopping Cart (not "With Shopping Cart")
SSL Certificates encrypt your customer's payment information before it is transmitted across the internet to your Shopping Cart.
(not "SSL Certificate helps your customers do their online transactions under a secure service.")
Yes you can create multiple secure websites on an singe server. But both websites need a different ip number!
mydomain.net. 10.0.0.1
sub.mydomain.net. 10.0.0.2
The SSL protocol is only working on HTTP 1.0 and not the HTTP 1.1 protocol. Within the HTTP 1.1 protocol you can send the hostname of the server in the header.