Exchange 2010 Certificates

corelanc0d3r October 24, 2009
This article has 3,683 views

In an older blog post on Certificate Authorities, I have provided some information about the process to generate Exchange 2007 certificates.  This process has slightly changed in Exchange 2010, and Johan Delimon (pro-exchange.be) has written an excellent article about this : Generating Exchange 2010 Certificates (Exchange Management Shell)

The 2 most important changes are :

  • the new-exchangecertificate cmd-let no longer supports the -path variable (so requests cannot be written directly to disk)
  • the 2007 GUI at Digicert still uses the -path parameter, so a new GUI was created to support 2010 certificate requests

In short, the updated procedure is :

  • generate the powershell command using an updated gui at Digicert : https://www.digicert.com/easy-csr/exchange2010.htm
  • Save the exchange certificate request into a $Data variable
  • Write the contents of the $Data variable to a file  (Set-Content -path “c:\request.req” -Value $Data)

Then, sign and import the certificate (bb124424(EXCHG.140).aspx)

.



Similar/Related posts:

Default ThumbnailExchange 2007 Administration : Policies and limits Default ThumbnailDynamic Distribution Lists not working as expected (0 recipients during mail routing) Default ThumbnailFree tool : Windows 2003/2008 Certificate Authority Certificate List Utility for pending requests and about-to-expire certificates Default ThumbnailWindows XP L2TP over IPSec dialup client VPN to a Juniper ScreenOS firewall, using Certificates Default ThumbnailExchange 2007/2010 : Renaming attachments ‘on the fly’ – custom transport agent

Tags:

, , ,

© Corelan Consulting BV. All rights reserved. ​The contents of this page may not be reproduced, redistributed, or republished, in whole or in part, for commercial or non-commercial purposes without prior written permission. See the Terms of Use and Privacy Policy for details.