Install an SSL Certificate in Microsoft Exchange Server
Once your SSL certificate has been signed and issued we will send you an email message that allows you to download the signed certificate and our intermediate certificate bundle, both of which must be installed on your Web site.
NOTE: You must use the provided certificate-download link within thirty days of receiving the certificate-issuance email message. If the download link is allowed to expire, you must re-key the certificate in order to retrieve your signed SSL certificate.
Before you install your issued SSL certificate you must download and install our intermediate certificate bundle on your Web server. You may also download the bundle from the repository.
Once you have downloaded and saved the certificate bundle, please follow the instructions below to install it.
Installing Intermediate Certificate Bundle
- Type mmc in the Start search box after pressing the Start menu to start the Microsoft Management Console (MMC).
- In the Management Console, select File then Add/Remove Snap In.
- In the Add or Remove Snap-ins dialog, select Certificates then click the Add button.
- Choose Computer Account then click Next.
- Choose Local Computer, then click Finish.
- Close the Add or Remove Snap-ins dialog and click OK to return to the main MMC window.
- If necessary, click the + icon to expand the Certificates folder so that the Intermediate Certification Authorities folder is visible.
- Right-click on Intermediate Certification Authorities and choose All Tasks, then click Import.
- Follow the wizard prompts to complete the installation procedure.
- Click Browse to locate the certificate file. Change the file extension filter in the bottom right corner to be able to select the file. Click Open after selecting the appropriate file.
- Click Next in the Certificate Import Wizard.
- Choose Place all certificates in the following store; then use the Browse function to locate Intermediate Certification Authorities. Click Next. Click Finish.
NOTE: If the Starfield Class 2 Certification Authority root certificate is currently installed on your machine you will need to disable it from the Trusted Root Certification Authorities folder.
- Expand the Trusted Root Certification Authorities folder
- Double-click the Certificates folder to show a list of all certificates.
- Find the Starfield Class 2 Certification Authority certificate.
- Right-click on the certificate and select Properties.
- Select the radio button next to Disable all purposes for this certificate.
- Click OK.
NOTE: Do not disable the Starfield Secure Certification Authority certificate located in the Intermediate Certification Authorities folder. Doing so will break the server, causing it to stop sending the correct certificate chain to the browser.
Installing the UCC Certificate
After you have installed our intermediate certificates, you will need to install your issued certificate on your server. To do this you will use the Import-ExchangeCertificate cmdlet as follows :
Import-ExchangeCertificate -Path "c:\CertificateFile.cer"
where :
-Path = The complete path and filename of the UCC certificate signed by Go Daddy.
Make sure to copy the thumbprint of the certificate as you will need it in an upcoming step.
NOTE: Do not use the MMC (Microsoft Management Console) certificate snap-in functionality to import certificates for ExchangeServer 2007 or Live Communications Server.
Now, you must enable the UCC certificate, which lets you specify which services you can use.
For Example :
Enable-ExchangeCertificate -Thumbprint [thumbprint] -Services "SMTP, IIS"
where
- -Thumbprint [thumbprint] = The unique string representing the installed certificate (copied in the previous step)
- -Services "SMTP, IIS" = this certificate will be enabled for SMTP and IIS services.
NOTE: Valid service identifiers are SMTP, POP, IMAP, UM, and IIS.
For additional information click on the following link : Importing and Enabling Certificates