CAS Server: Generating a CSR
Posted on 2010-09-16
We are trying to go live with the CAS Server… it requires that we register a certificate with Verisign. In order to do that we are required to generate a CSR file using the Microsoft Exchange 2007 Powershell command line. The command we are using is as follows:
New-ExchangeCertificate -GenerateRequest -Path c:\mail_zook_com.csr -KeySize 2048 -SubjectName "c=US, s=New York, l=New York, o=Zook Inc., ou=Information Services, cn=mail.zook.com" -DomainName autodiscover.zook.com, webmail.zook.com -PrivateKeyExportable $True
Now the problem is that the legal name of our organization is Zook, Inc. which contains a comma. Note: You MUST use the exact legal name with Verisign. So as you can see from the code above we can’t insert the comma between Zook and Inc because Exchange Powershell uses a comma as the delimiter between fields. The result is that Verisign is unable to accept the certificate since the comma is missing.