Let's Encrypt is a free service for generating trusted SSL certificates for your domain. Most Let's Encrypt certificate tools are command line only, Certify SSL Manager provides a simple GUI to help you set up certificates and managed their renewal. Just fire up the app on your Windows web server to get started.

Setup the sites you want to manage and your auto renewal settings, then let the app take care of renewing certificates.