Search Support
contact us

Let Us Make it Easy for You. Call 1-877-898-3290 for MyTime Support™. Learn More

Installation for Exchange 2007

Article Rating: 2 / 5 Votes: 22

Installing a certificate on Microsoft® Exchange 2007

At this time Network Solutions® does not offer a Unified Communications Certificate, however by following the below instructions you can get two certificates for your environment; your existing mail.company.com certificate and a new Autodiscover.company.com certificate. As long as you can serve up the correct certificate at the correct time you are able to connect with no issues.

 

Doing this simply requires that you setup two virtual servers on the CAS server. One services Autodiscover.company.com on one IP address and the other services the remaining web services on mail.company.com using a different IP address.

NOTE:  E
ach virtual site setup will need its own IP address

 Here is an outline of this setup process:

   1. Get a separate certificate for mail.company.com and Autodiscover.company.com

   2. Create a new virtual server in IIS on the CAS

   3. Create a new Autodiscover virtual directory in the new virtual server and remove the old one.

   4. Assign separate IP address, and certificates to each Virtual server

   5. Configure your internal SCP to point to Autodiscover.company.com

   6. Configure your Internal and External Service URLs to point to mail.company.com

   7. Make sure that your configured URLs will resolve internally and externally via DNS to the expected IP address for each of the services

In this configuration, internal domain member clients find the SCP to make the connection to Autodiscover. External clients find Autodiscover.company.com using DNS to make the connection to Autodiscover. In both cases the clients are referred to mail.company.com for the actual Exchange Services.

Installation Instructions:

You will have received your certificate file from us, usually named 'your_domain_com.cer'. Alternatively, you may have received it as several files: 'your_domain_com.crt' and intermediate certificates UTNAddTrustServer_CA.crt and NetworkSolutions_CA.crt.  The root certificate AddTrustExternalCARoot.crt may also be provided.

Copy the file(s) you received to the server, we suggest to the main drive - C:\

1.  Open the Exchange Management Shell. This is done by clicking 'Start' > 'Programs' > 'Microsoft Exchange Server 2007' > 'Exchange Management Shell'.

2.  Type and run the following command. It should all be entered onto a single line.

Import-ExchangeCertificate -Path C:\your_domain_name-or-order_number.crt | Enable-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS"

3.  The certificate is now installed. You may also need to follow the next steps to install the intermediate certificate(s) on the server.

Installing the Intermediate Certificates

1.  Click the 'Start' menu, and choose 'Run'. Enter the command 'mmc' and click 'OK'.
 

2. 
Click the 'File' menu, and select the 'Add\Remove Snap-in' option.
 

3.  From the pop-up window, click the 'Add' button.
 

4.
Choose 'Certificates', click the 'Add' button.
 

5.  Change the setting to 'Local Computer'. Click 'Next'. This step is extremely important!
 

6.  Choose 'Local Computer'. Click 'Finish'. Click 'Close' in the 'Add Standalone Snap-in' window, and 'OK' in the remaining window.

 

7.  On the left-hand side, expand the folder for 'Intermediate Certification Authorities'. Right-click on the 'Certificates' sub-folder, selecting 'All Tasks' then clicking 'Import...'.

This will start the Certificate Import Wizard. Click 'Next'.
 

8.  When prompted to choose a file, select the 'UTNAddTrustServer_CA.crt ' file. Click 'Next', 'Next' and then 'Finish' to complete the wizard.

9.  If required, repeat steps 7 and 8 with the 'NetworkSolutions_CA.crt'. 

Notes:
If you use an ISA server in front of your Exchange server(s), you will need to export the certificate from Exchange onto the ISA server, and import. When doing so, you must be sure to include the whole certificate chain.