Share via

Exchange Server 2010 San Certificate Installation

  • Article

For creating San certificate, first we need to have a Certification Authority Server..Install Certificate Authority server on Domain controller

From roles select the service and install it…After installing the certification Authority, Go to the group management Policy. Under the domain, select the Default domain policy.

Go to the settings tab on the right side… And right click computer configuration and edit, You will get Group Policy Management Editor
Inside the Computer Configuration, Extract –> Windows Settings –> Security Settings –>Public Key Policies.
Select Certificate Services Client enabled the configuration model, Certificate Services Client -Certificate Enrollment Policy. ….and do the same method for User Configuration also,

After that go to the Hub and Client Access servers open the Exchange Management Console:

http://mshiyas.files.wordpress.com/2010/06/8.jpg?w=500&h=353&h=353

Under Server configuration select Hub and Client access Server on the left hand side.
You can see “New Exchange Certificate”:

http://mshiyas.files.wordpress.com/2010/06/9.jpg?w=500&h=436&h=436

First enter the domain name, and then uncheck the “Enable wildcard Certificate”.

http://mshiyas.files.wordpress.com/2010/06/10.jpg?w=500&h=436&h=436

Follow the screen as it is………..as this screens are generated on my lest lab.

(all the names used here are fake and it is just for testing purpose only)
http://mshiyas.files.wordpress.com/2010/06/11.jpg?w=500&h=436&h=436

http://mshiyas.files.wordpress.com/2010/06/12.jpg?w=500&h=436&h=436
http://mshiyas.files.wordpress.com/2010/06/13.jpg?w=500&h=436&h=436
http://mshiyas.files.wordpress.com/2010/06/14.jpg?w=500&h=436&h=436

http://mshiyas.files.wordpress.com/2010/06/15.jpg?w=500&h=436&h=436

http://mshiyas.files.wordpress.com/2010/06/16.jpg?w=500&h=436&h=436

After this go the Certification Authority server and open the browser and type
//server name/certsrv/

http://mshiyas.files.wordpress.com/2010/06/17.jpg?w=500&h=384&h=384

http://mshiyas.files.wordpress.com/2010/06/18.jpg?w=500&h=384&h=384
http://mshiyas.files.wordpress.com/2010/06/19.jpg?w=500&h=384&h=384

After creating .cer file and copy this file to Hub and Client access server, go to Exchange mangement console ->server configuration
Under Server configuration select Hub and Client acces server and on the right hand side select “Pending Certificate request” and install it on Exchange

After that “Assign Services to certificate”

http://mshiyas.files.wordpress.com/2010/06/20.jpg?w=500&h=436&h=436

http://mshiyas.files.wordpress.com/2010/06/21.jpg?w=500&h=436&h=436 Assign Services to certificate

 

http://mshiyas.files.wordpress.com/2010/06/22.jpg?w=500&h=436&h=436

After compleating the task you can see it like below

http://mshiyas.files.wordpress.com/2010/06/23.jpg?w=500&h=353&h=353

Enjoy…!!!!!!!