This is a simple way to secure your Sage CRM instance so you can open and connect to it from the web knowing that your data wont be read in transit.
So first thing is that your Sage CRM server must be accessible from the internet and have a DNS setup.
DNS
Example in Route 53- Create an A record
Values for 1 might be
crm.yourdomain.com
2 will have the IP address of the CRM server.
Next in IIS on the CRM server you set up the
Bindings
1. Select the Default website (or the website that has Sage CRM under it)
2. Click Bindings
3. Add or Edit the "https" type to have our DNS named domain and port 443 (the default port)
Now we are ready to get the cert
To get the cert (which is a Lets Encrypt cert) from on your Sage CRM server open the site
https://www.win-acme.com/
Download the latest verison (as of writing this is 2.2.9.1)
Extract the downloaded archive to a folder
EG
C: \\ wacs
Open a command line (cmd) console and run (depending on your system setup you might need to run as an adminstrator)
I am not going to detail the steps from here as they can and do change over time.
Most times you select the default options but this depends on your own environment and requirements.
The setup once complete will also have set up a scheduled task that will renew the cert or check to renew it daily. You should just leave this as is but I mention so you know what it is.
Thats it :)