✅ Step-by-Step: Create & Install Self-Signed Certificate in PowerShell

-
✅ Step-by-Step: Create & Install Self-Signed Certificate in PowerShell

🟦 Step 1: Open PowerShell as Administrator

1. Click Start


2. Search PowerShell


3. Right-click → Run as Administrator


🟦 Step 2: Create a Self-Signed Certificate

Use this command:

New-SelfSignedCertificate -DnsName "test.local" -CertStoreLocation "Cert:\LocalMachine\My"

πŸ” What this does:

Generates a certificate for domain test.local

Saves it under Local Machine → Personal → Certificates


🟦 Step 3: Export Certificate With Private Key (Optional)

If you want a .pfx (for IIS / apps), run:

3.1 Set a password

$mypwd = ConvertTo-SecureString -String "P@ssw0rd123" -Force -AsPlainText

3.2 Export to PFX

Export-PfxCertificate -Cert "Cert:\LocalMachine\My\<Thumbprint>" `
-FilePath "C:\certs\mycert.pfx" -Password $mypwd

πŸ‘‰ Replace <Thumbprint> with your certificate’s real thumbprint:

Get-ChildItem Cert:\LocalMachine\My


🟦 Step 4: Export .CER (For Trusted Root Installation)

Export-Certificate -Cert "Cert:\LocalMachine\My\<Thumbprint>" `
-FilePath "C:\certs\mycert.cer"


🟦 Step 5: Install Certificate to Trusted Root (Fix Browser Errors)

Method 1: PowerShell (Automatic)

Import-Certificate -FilePath "C:\certs\mycert.cer" -CertStoreLocation "Cert:\LocalMachine\Root"

Method 2: Manual

1. Press Win + R → type certmgr.msc


2. Go to:

Trusted Root Certification Authorities → Certificates



3. Right-click → All Tasks → Import


4. Select your .cer file → Finish


🟦 Step 6: Verify Installation

Run:

Get-ChildItem Cert:\LocalMachine\Root | Where-Object {$_.Subject -like "*test.local*"}

If it shows up → certificate installed successfully ✔️


🎯 OPTIONAL: Create SSL Certificate for IIS

New-SelfSignedCertificate -DnsName "myapp.local" -CertStoreLocation Cert:\LocalMachine\My -FriendlyName "MyApp SSL"

Bind in IIS:

1. Open IIS Manager


2. Site → Bindings


3. Add https


4. Select your certificate



πŸ‘ Done!

If you want, I can also provide: ✅ Script to automate entire process
✅ Wildcard cert creation (*.domain.local)
✅ Adding certificate to IIS automatically

Would you like the full automation PowerShell script?

Comments

Post a Comment

Popular posts from this blog

Here’s a step-by-step guide on configuring WDS on Windows Server

-
Windows Deployment Services (WDS) is a Microsoft tool for network-based installation of Windows operating systems. It enables administrators to deploy Windows images over a network to computers without requiring physical media. Here’s a step-by-step guide on configuring WDS on Windows Server: Prerequisites: A Windows Server machine with WDS role installed. Active Directory, DNS, and DHCP set up and running on the network. An NTFS partition on the server to store images. Step 1: Install WDS Role Open Server Manager and go to Manage > Add Roles and Features . Click Next until you reach the Server Roles page. Select Windows Deployment Services and click Next . Choose WDS Deployment Server and WDS Transport Server and click Next . Complete the wizard to install the role, then restart the server if prompted. Step 2: Configure Windows Deployment Services Open WDS by navigating to Server Manager > Tools > Windows Deployment Services . In the WDS console, right-click on your se...
Read more

IIS Installation and Application configuration windows swerver

-
Image
  1.      Using the Server Manager, select  2 Add roles and features . Figure 4-9 Server Manager – Adding Roles and Features Select  Role-based or feature-based installation , and then click  Next . Choose  Select a server from the server pool . 4.      Select the server you are configuring, and then click  Next . Figure 4-10 Server Manager – Select Server 5.      Expand the  Web Server  role service. Figure 4-11 Server Manager – Web Server Role Services Expand the  Web Server  options and select the following  Common HTTP Features : ·         Default Document ·         ·         HTTP Errors ·         ·         Static Content · ...
Read more