Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

Troubleshooting
Research
Professional Opinions
Ask a Question
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

troubleshooting Question

Unable to Generate Certificate Request in Exchange 2007

Avatar of lesterw2
lesterw2 asked on
Exchange
3 Comments1 Solution1605 ViewsLast Modified:
I am trying to generate a certificate request via the cmdlet in Exchange Server 2007 SP1 running on Windows Server 2008 Standard. I'm logged in as the domain Administrator. The request, which I am running on a stand-alone Exchange Server (i.e., no separate Edge server) is as follows:

New-ExchangeCertificate -Confirm  -DomainController dc1.mydomain.com
                                         -DomainName mail1.myserver.net,mail.myserver.net,dc1.mydomain.local
                                         -GenerateRequest:$True   -Path C:\Certificates\Exchange.req -PrivateKeyExportable:$true
                                         -SubjectName "c=us, o=My Company, CN=mail1.justdns.net"   -Force

The error is:

New-ExchangeCertificate : This operation can only be performed locally on a Microsoft Exchange server that has the Edge Transport, Hub Transport, Client Access, or Unified Messaging server role installed.  Please log on locally to a Microsoft Exchange server that has one of the supported server roles installed and perform this operation again.
At line:1 char:24
+ New-ExchangeCertificate  <<<< -Confirm  -DomainController dc1.mydomain.com -DomainName mail1.myserver.net,mail.myserver.net,dc1.mydomain.local  -Gener
ateRequest:$True -Path C:\Certificates\Exchange.req -PrivateKeyExportable:$true -SubjectName "c=us, o=Social Motion, CN=mail1.myserver.net"  -Force

This server is also the domain controller for the domain. Please note that this is a Certificate Request for Secure SMTP with mulitiple domains, so using IIS is not the solution.  Any thoughts on how to get this request to work properly? Thank you.

REFERENCES:
  -  https://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_24065528.html   { problem caused by different reasons }
  -  http://www.ditii.com/2007/04/14/exchange-2007-generating-a-certificate-with-a-3rd-party-ca/   { seems I'm doing the same thing?  }
  -  http://technet.microsoft.com/en-us/library/aa998327.aspx   { command syntax  }
  -  http://technet.microsoft.com/en-us/library/aa998840.aspx  {  Creating a Certificate or Certificate Request for TLS  }



ASKER CERTIFIED SOLUTION
Avatar of Girish_2500
Girish_2500Flag of India image

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Commented:
This problem has been solved!
Unlock 1 Answer and 3 Comments.
See Answers