Installing your SSL: Microsoft Exchange 2007

Your SSL certificate and Intermediate certificate will arrive by email, to install your SSL certificate, you will need to do the following:

Import the Intermediate certificate

1

Copy the Intermediate certificate from the email and use the following instructions:

  • Copy the intermediate certificate from the body of the email and paste it into a simple text editor, such as Notepad.
  • Save it as intermediate.cer on your desktop.
  • Open MMC.
  • Select File, Add/Remove Snap In.
  • Select Add.
  • Select Certificates, Add.
  • Select Computer Account, Next.
  • Local Computer, Finish, Close, OK.
  • Select Certificates, Intermediate Certification Authorities, Certificates.
  • Right-Click Certificates, All-Tasks, Import.
2

The Import Wizard will start, follow the instructions to import the intermediate certificate and close MMC.

Import the SSL certificate

3

Copy the SSL certificate from the email and save this as mydomain.cer. The name and location of the file are not important.

4

Open the Exchange Management Shell and run the import and enable commands together separated by a pipe character:

Import-ExchangeCertificate -Path C:\mydomain.cer | Enable-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS"

5

The services can be any combination of these values: IMAP, POP, UM, IIS, SMTP.

6

To verify that your website security certificate is running and enabled run the following command:

Get-ExchangeCertificate -DomainName mydomain.cer

7

In response to the above command you should see the certificates thumbprint, an abbreviated list of the services and mydomain.cer. If your certificate isn't properly enabled, you can re-run the modified Enable command with the certificate thumbprint:

Enable-ExchangeCertificate -Thumbprint [paste thumbprint here] -Services "SMTP,IMAP, POP, IIS"

8

Reboot your server and test your certificate is working by connecting with IE, ActiveSync or Outlook.

Important: Do not use the Certificate snap-in to import the certificates for any service on an Exchange server. Using the Certificate snap-in to import certificates on Exchange servers will fail. Therefore, TLS or other Exchange certificate services will not work. For more information please visit http://technet.microsoft.com/en-us/library/bb125165.aspx.

Answer options

Your feedback was successfully added.

Answer tracking

Track

Watch the content of this article for changes.