Table of Contents / Create the Intermediate CA / Create a localhost Server Certificate / Import Into IIS
-
CD into the Intermediate directory:
cd C:\Certificates\DoD\CA\Intermediate -
Create the PFX file:
In order for you to import your certificates into a windows server (like IIS), you will need to create a PKCS #12 archive.
openssl pkcs12 -export -in public/localhost.cer -inkey private/localhost.key -out pfx/localhost.pfx -
Import PFX into IIS:
In order to enable SSL in IIS, you need to import the localhost certificate into IIS.
Step Figure Open IIS Click on the Server 
Double-Click on Server Certificates:
Under Actions, ClickImport...Browse to C:\Certificates\DoD\CA\Intermediate\pfx Select the localhost.pfx file: 
Enter the PFX export password Check Allow this certificate to be exportedClick OKYou should now see your certificate in the Server Certificates pane: 
In the IIS Connectionspane, click on your website you want to add the certificate to.In the IIS Actionspane, click onBindings...Add...orEdit...thehttpsbindingChange the SSL certificate:drop-down to the correct localhost certificate that you just uploaded.Press OKClose the bindings window -
Require PKI to access the website:
Step Figure In IIS, in the Connectionspane...Click on the website: 
Double-click on SSL Settings
Check Require SSLand underClient certificates:select theRequireradio button
The website should now prompt you for PKI each time you visit, just add your PKI you created under the Signing tutorial to Google Chrome and select it when prompted.
Table of Contents / Create the Intermediate CA / Create a localhost Server Certificate / Import Into IIS