Setting up/installing SSL cert for Exchange 2010 Outlook Anywhere

Hello all,

I am new to Exchange 2010 and wanting to enable Outlook Anywhere. I have purchased a UCC cert for the client from GoDaddy and now need to know what to do next. From what I understand i need to create something now on the Exchange server? Detailed steps would be appreciated. Thanks,

Jimmy
forums712Asked:
Who is Participating?
 
Syed Mutahir AliConnect With a Mentor Technology ConsultantCommented:
Hi Forums712,

If you check the blog post which outlines the steps required to activate / import the cert from the shell, it states the following :

"If you want to use a GoDaddy UCC certificate with Exchange 2010, you’ll  run into a few problems using the new certificate GUI tools"

Which is why the author has specified to use the shell but following are the instructions provided by GoDaddy :

http://help.godaddy.com/article/5863

1 - To Install the SSL Certificate on  Microsoft Exchange 2010 Download and open the ZIP file  containing your certificate. Your certificate is named your_domain_name.crt,  where your_domain is the common name of your certificate.

2 - Copy the CRT file to your Exchange  server.

3 - Start the Exchange Management Console  by going to Start > Programs > Microsoft  Exchange 2010  > Exchange Management  Console.

4 - Click Manage Databases, and  then select Server configuration.

5 - Select your certificate from the Exchange Certificates  section (listed by its Friendly Name), and  then, from the Actions menu, click Complete  Pending Request.

Browse to your certificate file,  click Open, click Complete, and then click Finish.

NOTE: Exchange  2010 might display, "The source data is  corrupted or not properly Base64 encoded." You can ignore this error if,  under Self Signed, your certificate  is listed as False. If it displays True,  refresh your console by pressing F5. If it still displays True,  

create a new CSR and then re-key your certificate.

From the Actions menu, click Assign  Services to Certificate.

Select your server from the list provided and  then click Next.

Select the services you want to assign to your certificate, click Next, click  Assign, and then click Finish.

Let me know if you need further assistance on this.
0
 
Syed Mutahir AliTechnology ConsultantCommented:
A complete walk through is available at the following link :

http://blog.montopolis.com/2010/01/12/exchange-2010-godaddy-ucc-certificate-walkthrough/

https://www.digicert.com/easy-csr/exchange2010.htm

Enabling outlook anywhere in Exchange 2010:

In Powershell :

Enable-OutlookAnywhere -ExternalHostname 'mail.yourdomain.com' -SSLOffloading $false -DefaultAuthenticationMethod 'Basic'

Enable-OutlookAnywhere -ExternalHostname 'mail.yourdomain.com' -SSLOffloading $false -DefaultAuthenticationMethod 'Basic'

Open in new window

0
 
forums712Author Commented:
Thanks Mutahir, i checked the links and looks like instructions for the command shell. i was told that this can all be done now via the Exchange management Console with 2010? Thanks,
0
 
Syed Mutahir AliTechnology ConsultantCommented:
0
 
forums712Author Commented:
Thanks muthir i followed the above and got the cert back from Go daddy approved, imported into Exchange and now not getting the Security page when using OWA!! Though, outlook anywhere is not working. Got 443 opened on the firewall,Outlook anyhwere enabled, and correct settings in Outlook. What is wrong? As for assigning Services to the certificates management console, i only assigned it to IIS. Am i supposed to assign it to SMTP as well? Thanks,
0
All Courses

From novice to tech pro — start learning today.