Copy part of content from below url: http://blog.sina.com.cn/s/blog_7be3b4570100sqi0.html:
There is a solution to the problem. We need togo old-school. The IIS6 Resource Kit contained atool called SelfSSL. We need that exe and willuse it to create our self-signed cert from the commandline. (BTW, this information was sourced from ablog by Hans Olav. You can find his post here.
- Delete the certificate from the previous section of thispost.
- Make sure you have SelfSSL.exe. If not, youcan download the exe here.
- Open a command prompt (run as administrator)
- Navigate to the directory containing SelfSSL.exe
- In IIS, click on the Sites node to get the siteid. We will pass it as an argument toSelfSSL
![image]( "image")
- As per Olav’s blog, run SelfSSL /N:CN=<your website address (no http://)> /V:<howmany days the certificate should be valid>/S:<site ID from above>[/P:<port, if not 443>]
For me it was: SelfSSL /N:CN=www.testssl.com /V:1000 /S:2![image]( "image")
-
Take another look:
![image]( "image")
We seem to be good so far.
-
Test it again
![image]( "image")
It appears we still have a problem. Now IE is telling me thatthe certificate was not issued by a trusted authority – which istrue. But in our test environment, we are trusted. So, let’s dealwith this…
Adding the Certificate to Trusted Root CertificateAuthorities
We could solve this problem by adding the certificate to theTrusted Root Certification Authorities in IE, but if we areexposing services, we will need to add it to the LocalComputer. Here is what we need to do
-
Export the certificate
![image]( "image")
![image]( "image")
-
Open Certificate Manager
Start | Run | mmc.exe certmgr.msc -
Add the cert to "Local Computer" Trusted Root CertificationAuthorities
Right-Click on "Certificates" under "Trusted Root CertificationAuthorities" | All Tasks | Import
![image]( "image")
Click Next on the splash screen and enter the path to the exportyou did in the last step (you need to change the file extensionchoice in the dialog to pfx)
![image]( "image")
Enter the password you created when exporting
![image]( "image")
On the next screen, click Browse so we can select theappropriate store (Local Machine)
![image]( "image")
Make sure you check the “Show Physical Stores” checkbox andchoose “Local Computer” under “Trusted Root CertificationAuthorities”
![image]( "image")
On the next screen click finish. That is it!
Problem Solved
