Install Certificate for Exchange 2010 Server

In this article, we learn how to install the certificate in Exchange 2010 server from [Self-sign] from our CA

I’ll go to show you all steps of this process, usually, normal companies are purchasing certificates from certificate company such as Geotrust, commode, DigiCert, etc..

In my tutorial, I gonna use on my CA, I have installed CA role before.

Please be accurate with the request and submit processes, because there are some certificate companies that won’t let you change or edit the certificate after you already created and submitted.

My apologies about scribbles!.

A little bit about CA:

https://www.google.co.il/webhp?sourceid=chrome-instant&ion=1&espv=2&ie=UTF-8#q=certificate%20authority%20microsoft

Install a Root Certification Authority:

http://technet.microsoft.com/en-us/library/cc731183.aspx

Open Exchange Management Console and go to Server Configuration:

post-479-0-90363200-1420154802_thumb.jpg

at the right side of console please click on”New Exchange Certificate

post-479-0-01134100-1420154805_thumb.jpg

Type Friendly Name and then Next

post-479-0-79079700-1420153663.jpg
 Next:

post-479-0-60172500-1420153664.jpg

Here we suppose to select which services we want to use as a subject alternative name on the certificate.

In my figure, you can see that I didn’t select “Exchange, Active Sync’ what you probably need so don’t forget to select it as well.

post-479-0-71093000-1420153665.jpg

Certificate domains

post-479-0-70228800-1420153666.jpg

We need to save the request file (reg extension) so click on browse and save it.

post-479-0-71136700-1420153667.jpg

post-479-0-61408400-1420153668.jpg

Next:

post-479-0-11114900-1420154604.jpg

 

post-479-0-80965800-1420153669.jpg

Right now we have done half way, we need to open the Request file we keep as TXT file and copy the content.

install Certificate Exchange 2010

I have opened my CA web service and then I clicked on “Request a certificate

http://CANAME/certsrv 

install Certificate Exchange 2010

Submit an advanced certificate request:

post-479-0-79425600-1420153673.jpg

 

post-479-0-79705900-1420153674_thumb.jpg

Don’t forget select “Web Server” on Certificate Template category and eventually click on submit.

install Certificate Exchange 2010

Download both of them as “Base 64 encoded”

install Certificate Exchange 2010

The last step is the complete pending request so going back to the Exchange Management Console again,

And click on Complete Pending Request

install Certificate Exchange 2010

Click on browse  and load out new certificate

install Certificate Exchange 2010

install Certificate Exchange 2010

Click on complete.

install Certificate Exchange 2010

Click on Finish

post-479-0-99194100-1420153733.jpg

Here we need to click on “Assign Service to Cer….

install Certificate Exchange 2010

 

install Certificate Exchange 2010

Assign Services to Certificate:

install Certificate Exchange 2010

 

install Certificate Exchange 2010

And now we can see that it’s working.

install Certificate Exchange 2010

 

Please go to exchange server and double click on the new certificate and install it in exchange, who doesn’t know how to install the certificate can see and learn the steps in below URL

http://www.databasemart.com/howto/SQLoverssl/How_To_Import_Personal_Certificate_With_MMC.aspx