Recent Entries

ZeroSSL with IIS 10
Account Breach Monitoring
DBML Visualizer VERY Slow - solved!
Poor Man's SQL Log Shipping (Kinda)
Excel Column Letter To
Easy & Powerful Ecommerce Solution
asp:Menu Flicker on Page_Load - Solved
Windows Server 2008 Install DLL into GAC


Skip Navigation Links.
You are here: Rants, Rave, & Tips


ZeroSSL with IIS 10

May 3

Written by:
5/3/2019 11:11 AM  RssIcon

I have an IIS 10 server behind a VPN/Firewall, and was bound and determined to use Let's Encrypt even though the server can't be reached by Let's Encrypt to authorize the SSL certificate request.

I ran across, but was very confused has how to successfully complete the process.  Here's my suggestions that allowed me to get it working:


  1. In IIS, create a Certificate Request (CR).  Copy the contents of the CR to the clipboard.
  2. Start the Free SSL Cert process on
  3. Leave the domains box blank, paste in the CR from above
  4. Click next to have zerossl create the LetsEncrypt key (on the left side)
  5. SAVE the LetsEncrypt Key that it creates for you (you'll need this for renewals)
  6. Click next to have the certificate generated
  7. The cert generated will contain TWO keys.  Save its entire contents, but then make a SEPARATE .cer (txt) file that contains ONLY the first key from cert generated.
  8. Return to IIS, use the Complete Certificate Request wizard.
  9. Provide your .cer file that ONLY has the first key in it.
  10. Finish the wizard and then handle your site binding(s) per usual.

Rock n' roll.


Hope this helps someone in the future.

Your name:
Gravatar Preview
Your email:
(Optional) Email used only to show Gravatar.
Your website:
Security Code
Enter the code shown above in the box below
Add Comment   Cancel