If you don’t currently have an SSL certificate the best option is to purchase one Trusted Certificate Authority (i.e. Verisign, Thawte, DigiCert, etc…). Trusted Certificate Authorities are organizations that can issue SSL Certificates that are automatically trusted by most popular web browsers (i.e. Internet Explorer, Chrome, Safari and Firefox). A Trusted Certificate Authority will review the Fully Qualified Domain Name (FQDN) in your Certificate Signing Request (CSR) and ensure you are the legitimate owner of that domain. For example, if your Kaseya web interface configured to use “myserver.acme.com”, the Trusted Certificate Authority will ensure that you own the domain “acme.com” and will issue you a certificate.
The high level overview of the process is as follows:
- You have DNS properly configured to resolve the server name to the MS IIS Web Server you are using to run the Kaseya Web Interface (i.e. “myserver.aceme.com”)
- In MS-IIS you will create a Certificate Signing Request (CSR)
- You will choose a Trusted Certificate Authority and choose to purchase a Web Sever SSL Certificate and as part of the purchase they will request that you provide them with the CSR you created in step 2 above.
- The Trusted Certificate Authority will validate you are the legitimate owner of the domain you are requesting the SSL Certificate for.
- The Trusted Certificate Authority will create and provide you with a Certificate and instructions for installing it in MS-IIS along with instructions for installing any Intermediate or Root Certificates into MS-IIS.
- Once the certificate and any Intermediate or Root Certificates are properly installed in MS-IIS, you can export using instructions at: https://helpdesk.kaseya.com/entries/58305257-Using-An-Existing-SSL-Certificate
- Lastly, you can take the certificate you just exported from MS-IIS and import it into Kaseya using the installer.
You can purchase a Web Server SSL Certificate and use their specific instructions for MS-IIS from popular Trusted Certificate Authorities using the following links (the below vendors are examples, but other SSL vendors can also be used):
Product Page: http://www.digicert.com/iis-ssl-encryption.htm
MS-IIS Request Instructions: http://www.digicert.com/csr-creation.htm (select MS-IIS)
MS-IIS Install Instructions: http://www.digicert.com/ssl-certificate-installation.htm (select MS-IIS)
MS-IIS Request Instructions: https://www.thawte.com/resources/video/generate-csr-iis7.html
MS-IIS Install Instructions: https://www.thawte.com/resources/video/install-ssl-certificates-iis7.html
Product Page: http://www.rapidssl.com/buy-ssl/index.html
MS-IIS Request Instructions: https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO6506 (select MS-IIS)
MS-IIS Install Instructions: https://knowledge.rapidssl.com/support/ssl-certificate-support/index?page=content&id=SO16226 (select MS-IIS)
Product Page: http://www.geotrust.com/ssl/ssl-certificates-premium/
MS-IIS Request Instructions: http://www.geotrust.com/support/generate-csr/ (select MS-IIS)
MS-IIS Install Instructions: https://knowledge.geotrust.com/support/knowledge-base/index?page=content&id=SO15065 (select MS-IIS)
MS-IIS Request Instructions: https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=AR235 (select MS-IIS)
MS-IIS Install Instructions: https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=AR212 (select MS-IIS)
Product Page: http://ssl.comodo.com/comodo-ssl-certificate.php
MS-IIS Request Instructions: https://support.comodo.com/index.php?_m=knowledgebase&_a=view&parentcategoryid=33&pcid=1 (select MS-IIS)
MS-IIS Install Instructions: https://support.comodo.com/index.php?_m=knowledgebase&_a=view&parentcategoryid=95&pcid=1 (select MS-IIS)
MS-IIS Request Instructions: http://support.godaddy.com/help/article/5343/generating-a-certificate-signing-request (select MS-IIS)
MS-IIS Install Instructions: http://support.godaddy.com/help/category/742/ssl-certificates-installing-ssl-certificates (select MS-IIS)