The wildcard certification for "*" will expire nearly every year and need to be renewed. If there are any questions on how to do this or you encounter errors during this process, please reach out to Mitchell J. 

  1. Make your way over to GoDaddy to view all of the certifications. You won't need this right away but it will be necessary later.
  2. You can do this on any server that requires SSL certification but to be safe it should be done to "" as this server is the most important one that needs SSL. Connect to the server with admin creds and open MMC.exe by hitting the start button and then typing "mmc"
  3. Once in MMC, click file > add or remove snap-ins > double click certificates on the left side > Select computer account, next > Make sure its local computer, finish.
  4. Navigate in certificates > Personal > Certificates
  5. From here you can see the * cert. If the expiration date is pass the current date it needs to be updated from GoDaddy. To do this, go to this link Here and use the login located in 1Pass. Once logged in, you should see the smcsc cert
  6. Go back to the server and open the program "Digicert". Once open, click on the * cert and then click "Create CSR". We are going to need this for GoDaddy so we can get the cert renewed.
  7. Make sure the information looks similar to this. When you click "Generate" the csr key should appear on screen like below
  8. Click "Copy CSR" to copy it to the clip board. Go back to the GoDaddy page and scroll down to "Manage Certificate". Click and open "Re-Key your certificate" and paste the CSR you coppied in step 7 in the CSR box. Click "Add Change" and then click "Submit All Changes". This part might take a minute as we need to wait for GoDaddy to send Trey A. an email saying that changes have been made. Once Trey confrims the email you can move to the next step.
  9. Now we can download the certificate. Make sure to select IIS server type and then hit download. Make sure to do this on the server or make sure you have a way to get the zip file to the server.
  10. Once on the server, extract all and reopen Digicert. Click the import button and browse to the extracted folder and select the file that has the file name ".crt". Click next and give the cert a name. I suggest naming it so we know when it was made
  11. You should be able to refresh the MMC console to see that the cert has now been added. The last thing that needs to be done is to connect the IIS site to point to the cert. Click the start button and type "IIS" > In the side panel, select the server name > sites > for this example I will be showing the estudents site, so click on "estudent" > click "Bindings..." on the left side panel
  12. Under site bindings, click on the "https" site and then edit > Under SSL Certificate, chose the friendly name you gave the cert in step 10 > click select, then OK
  13. The certification for that site should now be updated. It might take a few minutes for the site to work properlly again. Repeat steps 11 and 12 for all other sites that use the "" domain. Servers such as SMCSCPTSV1 will require you to do 8 through 12 as they are not on the same server as estudents/efaculty and require you to download the cert.