Skip to content
QCecuring Documentation

Microsoft IIS

Microsoft IIS Integration

Section titled “Microsoft IIS Integration”

Short Summary: The SSL-CLM Agent runs locally on the IIS server to handle binding updates.

Prerequisites

Section titled “Prerequisites”
  • Agent Installed: Running as Local System or Administrator.
  • PowerShell: Version 5.1+.

How to Enable

Section titled “How to Enable”

You don’t configure this as a “Store” in the UI. Instead, you create an Installation Policy.

  1. Navigate: Certificates > Deployment Policies.
  2. Type: IIS Binding.
  3. Target: Select the Agent.
  4. Site Name: Default Web Site.
  5. Binding IP/Port: *:443.
  6. Hostname: www.example.com.

Action

Section titled “Action”

The Agent will:

  1. Import PFX to Local Machine > My.
  2. Find the IIS Site/Binding.
  3. Update the binding to use the new Certificate Thumbprint.
  4. Restart the Site (optional).