# SSL Configuration in WSUS for 3rd Party Update {% embed url="" %} To deploy 3rd party updates with WSUS and/or SCCM, SSL configuration on WSUS is required. Below are the steps to be done on WSUS and SCCM. 1. Request SSL certificate for WSUS, 2. WSUS Website configuration, 3. Convert WSUS to SSL with WSUSUtil, 4. 3rd Party settings on SCCM, 5. Notification of WSUS address broadcast over SSL to client computers ## Request SSL certificate for WSUS SSL Certificate is required for the website where WSUS Web service is published. This certificate can be obtained from a trusted authority or corporate CA server. The certificate must be an HTTPS SSL certificate and must be in a format suitable for common security levels. Fields such as Common Name, Subject Name of the certificate must contain the FQDN (for example WSUSServer.domain.com) name of the WSUS server. ## WSUS Website Configuration Assign SSL Certificate for WSUS Web Site in Internet Information Services snap-in. give SSL sertificate for binding of Secure Port (for example: 8531 or 443) ![](/files/L4oMnUf3svoxwJoN6Ia5) Select **Require SSL** for the following applications of WSUS Site. * ApiRemoting30 * ClientWebService * DssAuthWebService * ServerSyncWebService * SimpleAuthWebService ![](/files/f6VcBiZ0ZEFTHwDmVtjG) ![](/files/6p79oLpFgn2zzI6DEoKm) ## Convert WSUS to SSL with WSUSUtil WSUSUtil tool used for converting WSUS Service from or to SSL/NonSSL. Following command should be running on WSUS server with administrative priviledge. When you open command line, open as administrator option should use. WSUSUtil placed in WSUS installation folder. generally this tool exist under "C:\Program Files\Update Services\Tools" ```batch wsusutil configuressl wsusserver.domain.com ``` wsusserver.domain.com address should replaced with your wsus servers FQDN name. ![](/files/Qcd4WQZdkBEK7hPL9Q0I) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.easy2patch.com/configuring/ssl-configuration-in-wsus-for-3rd-party-update.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.