Exchange 2013 creates a self-signed SAN certificate and assigns it to the services like IMAP, POP, IIS, and SMTP.The only drawback of this self-signed certificate is that it contains the server’s FQDN and NetBIOS names only.Where we get certificate errors on all the Clients where we need to install the Self signed Certificates manually on all the clients , which is a hassle and no one likes it in fact .
To avoid any certificate related errors and use it over the internet without any problems it is highly recommended that you request and assign a certificate from a Certification Authority that can be contacted from anywhere like DigiCert,VeriSign,Go Daddy etc.. .
To request a new certificate from a trusted CA use following format:
Step 1:
Requesting a Certificate , you can use Exchange Management shell or GUI
GUI is much user friendly
You can refer the link below to use GUI and Export the Exchange Certificate
How to Create an SSL Certificate Request for Exchange Server 2013
Step 2:
Use this request file for submission to the CA and download the certificate. Save the certificate to a convenient location.
Upload the CSR (.req) file to the third party Cert providers like DigiCert.
And once the Verification Process completes. you can download the Cert from their Portal.
Step 3:
To Import the Generated certificate
See
How to Complete a Pending SSL Certificate request in Exchange Server 2013
Great !!
You learnt how to Export and Import Exchange Certificates in Exchange 2013
Thanks Satheshwaran, the process is new to me so I used your guide and http://www.techieshelp.com/exchange-2013-configuring-and-installing-an-ssl-certificate/ to get our cert in place. Big changes in 2013!!
Good One Satheshwaran
Hi,
i am having problems with my internal outlook clients connecting to our internal exchange server 2013, can you please confirm that i do indeed require a CA certificate for internal users to connect to the exchange server, or are CA only meant for external clients (OWA etc).
any help would be very much appricated. many thanks in advance.
Ajay Paul
You can use this CA for Internal Users. Outlook should work fine with this Internal CA
Hey!
how can import an cert to an Exchange 2013!
For few Days have harddrive crash on that was my Exchange 2013 server with 3:e parts certficate
can i do Pending SSL Certificate request then import my cert then have from my Go Daddy
You can create a Cert request. Submit with godaddy
Now import the cert,
It should wrk
Hello Sateshwaran, by following your tutorial my multi tenant exchange is ready now ..
I am now ready to sell mailboxes and my problem is that I can’t buy expensive mailbox migration tools so is it possible to migrate customers
Mailboxes without using these expensive tools ?
2ndly mailboxes working fine with OWA, IOS, Android but with outlook it asks every time for password when i open outlook any idea ?
Thanks
Hello Sateshwaran. my multi tenant exchange is ready by following your tutorial
I am now ready to sell mailboxes and my problem is that I can’t buy expensive mailbox migration tools so is it possible to migrate customers Mailboxes without using these expensive migration tools ?
2ndly mailbox connectivity with Android,IOS, OWA working fine but with Outlook it always ask for Password when i open Outlook any idea ?
Thanks
Ihsan
Re check Outlook anywhere settings. Are you using Autodiscover redirect.?
cheapest – DO Manual PST migration Add X500 . You have to get ready handling the nightmare of NDrs and unhappy customers.