Obtaining and Backing Up SSL Certificates (IIS 6.0)
Secure Sockets Layer (SSL) certificates contain information used in establishing identities over a network, a process called authentication. Similar to conventional forms of identification, certificates enable Web servers and users to authenticate each other before establishing a connection.
Server certificates contain information about the server that allows the client to positively identify the server before sharing sensitive information. Client certificates contain personal information about the clients requesting access to your site that allow you to positively identify them before allowing them access to the site.
This topic is limited to obtaining, installing and backing up server certificates. For information on obtaining client certificates, see Obtaining Client Certificates in IIS 6.0.
There are two ways to obtain a server certificate. You can issue your own certificate, or you can obtain a certificate from a certification authority.
You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /user:Administrative_AccountName "mmc systemroot\system32\inetsrv\iis.msc".
To issue your own server certificate
To obtain a server certificate from a certification authority
It is important to safeguard the certificate and key pair; always back them up to a disk and keep the disk in a secure place.
To create a backup copy of your server certificate and private key
If you already have Certificate Manager installed in MMC, it points to the correct Local Computer certificate store.
To add Certificate Manager to MMC