[Webinar] Streamline your web hosting managementRegister Today


Using Exchange Management Shell to generate a CSR

Posted on 2008-02-12
Medium Priority
Last Modified: 2010-04-21
We've just installed a new Exchange 2007 Server. Mail Flow is working fine. OWA is working fine after imporing the old certificate from the former Exchange 2003 server (Also the root CA) which is still in place, but exchange 2003 is not being used. The issue arises when Outlook 2007 is used as it displays a certificate error. By selecting "Yes" to proceed all is well, but I would like to eliminate this window from popping up. The original certificate was purchased and generated via CSR through Network Solutions. After doing some research I found that it may be best to have Network Solutions reissue the certificate by generating a new CSR using the Exchange Management Shell. I did so using the following command:
New-ExchangeCertificate -GenerateRequest -DomainName mail.company.com,autodiscover.company.com,server1 -Friendlyname mail.company.com -PrivateKeyExportable:$true -Path c:\certreq.txt
The command seemed to work properly, however when I go to submit the CSR to Network Solutions The site fails to accept it saying "Invalid Organization Name" which it is trying to get from the CSR. All spelling in the command was correct. Am I dong something wrong or is it possible that Network Solutions is not capable of generating a certificate from a CSR generated by the Exchange 2007 Management Shell? I'll assume it's me and any advice would be greatly appreciated. Again, Everything works except for the Certificate Error window that pops up only for people using Outlook 2007. I does not seem to effect Outlook 2003. Thanks!
Question by:brian_steffy
  • 2
LVL 13

Accepted Solution

consultkhan earned 2000 total points
ID: 20882363
here is the sample command for generating a certificate request to be submitted to CA.

New-ExchangeCertificate -generaterequest -subjectname "dc=com,dc=contoso,o=Contoso Corporation,cn=exchange.contoso.com" -domainname CAS01,CAS01.exchange.corp.contoso.com,exchange.contoso.com,autodiscover.contoso.com -PrivateKeyExportable $true -path c:\certrequest.txt

change the names as per your installation

LVL 13

Expert Comment

ID: 20882367
here o=Contoso Corporation

you need to match it to your organisation.


Author Closing Comment

ID: 31430355
Thanks a bunch. I figured it was something I was doing as I'm not used to the Exchange Management Shell. Your solution worked perfectly.

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

You finally migrated Public Folders to Office 365, decommissioned the Public Folder mailbox database and since then, when you send an email from on-premise to mail-enabled Public Folders, you get the following error: "Misconfigured public folder mai…
In this article, I will demonstrate that how to do a PST migration from Exchange Server to Office 365. This method allows importing one single PST, or multiple PST's at once.
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month9 days, 15 hours left to enroll

591 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question