Exchange 2007 TLS Certificate

Posted on 2009-12-22
Last Modified: 2012-05-08
I have been requested to provide TLS certificate and if it is self signed i need to provide my private key.

I am running exchange 2007 SP1 and i really do not know where to start.

How and where can i find this information?

Client Request
" Your system must be using TLS Certificate. If your certificate is self signed we will need a copy of your public key to preform certificate validation. "

Question by:Dejayy
    LVL 7

    Expert Comment

    Best way is to purchase a certificate from GoDaddy for use as TLS.

    - Start a certificate request on Exchange 2007 using powershell
    - Import the certificate using powershell
    - Enable the certificate for use for SMTP
    - Set the hub transport to all certificate authentication, but not require it
    - Ensure that you also allow port 25 traffic from the source IPs of the other email domain
    LVL 65

    Accepted Solution

    Do you already have a commercial certificate for use with Exchange? If so then you don't need anything else, as Exchange does everything for you, including TLS support. No changes required, it is all set out of the box.
    If you do not have a commercial SSL certificate then you should do, because the self signed certificates are designed as place holders for a real certificate, not commercial use.

    I have instructions on the certificate setup here:


    Featured Post

    Are end users causing IT problems again?

    You’ve taken the time to design and update all your end user’s email signatures, only to find out they’re messing up the HTML, changing the font and ruining the imagery. What can you do to prevent this? Find out how you can save your signatures from end users today.

    Join & Write a Comment

    Learn more about how the humble email signature can be used as more than just an electronic business card. When used correctly, a signature can easily be tailored for different purposes by different departments within an organization.
    Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
    In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
    how to add IIS SMTP to handle application/Scanner relays into office 365.

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    24 Experts available now in Live!

    Get 1:1 Help Now