Using Exchange Management Shell to generate a CSR

We've just installed a new Exchange 2007 Server. Mail Flow is working fine. OWA is working fine after imporing the old certificate from the former Exchange 2003 server (Also the root CA) which is still in place, but exchange 2003 is not being used. The issue arises when Outlook 2007 is used as it displays a certificate error. By selecting "Yes" to proceed all is well, but I would like to eliminate this window from popping up. The original certificate was purchased and generated via CSR through Network Solutions. After doing some research I found that it may be best to have Network Solutions reissue the certificate by generating a new CSR using the Exchange Management Shell. I did so using the following command:
New-ExchangeCertificate -GenerateRequest -DomainName mail.company.com,autodiscover.company.com,server1 -Friendlyname mail.company.com -PrivateKeyExportable:$true -Path c:\certreq.txt
The command seemed to work properly, however when I go to submit the CSR to Network Solutions The site fails to accept it saying "Invalid Organization Name" which it is trying to get from the CSR. All spelling in the command was correct. Am I dong something wrong or is it possible that Network Solutions is not capable of generating a certificate from a CSR generated by the Exchange 2007 Management Shell? I'll assume it's me and any advice would be greatly appreciated. Again, Everything works except for the Certificate Error window that pops up only for people using Outlook 2007. I does not seem to effect Outlook 2003. Thanks!
brian_steffyAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

consultkhanCommented:
Hi,
here is the sample command for generating a certificate request to be submitted to CA.

New-ExchangeCertificate -generaterequest -subjectname "dc=com,dc=contoso,o=Contoso Corporation,cn=exchange.contoso.com" -domainname CAS01,CAS01.exchange.corp.contoso.com,exchange.contoso.com,autodiscover.contoso.com -PrivateKeyExportable $true -path c:\certrequest.txt

change the names as per your installation

thanks.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
consultkhanCommented:
here o=Contoso Corporation

you need to match it to your organisation.

thanks.
0
brian_steffyAuthor Commented:
Thanks a bunch. I figured it was something I was doing as I'm not used to the Exchange Management Shell. Your solution worked perfectly.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.