?
Solved

Creating SSL for exchange server 2010

Posted on 2014-01-21
2
Medium Priority
?
300 Views
Last Modified: 2014-01-28
Hi

We are going to migrate from exchange 2007 to 2010. one of the IT service company is going to do this migration for us. I have not still built the Exchange 2010 server yet.

In advance I thought of buying  SSL and keeping it ready for the webmail access. Now the SSL company has asked me to create CSR and submit to create a SSL.

To create a CSR do I need create it on the designated new Exchange server, which I am going to build. Or can I create the CSR on any server on our network and submit for the SSL creation.  

Thanks
0
Comment
Question by:lianne143
2 Comments
 
LVL 53

Assisted Solution

by:Will Szymkowski
Will Szymkowski earned 1600 total points
ID: 39796583
Typically you will need to create the CSR on the new Exchange server. You will want to purchase a sAN/UCC cert and then add then following names to it...
- autodiscover.domain.com
- mail.domain.com
- legacy.domain.com

The legacy.domain.com will be the URL you will use for your old Exchange server while the transition is happening. When users connect to your 2010 CAS server if their mailbox resides on 2007 they will be redirected to the legacy.domain.com URL automatically.

Once you have the CSR created it will be exportable. So you can import the cert into the new Exchange server (assign the services to the cert IIS, SMTP) then you can export the cert and import it on all other CAS servers (this also includes the 2007 exchange CAS servers).

If you are also using a load balancer you can also assign the cert to this instead of putting it on all of the Exchange servers.

Will.
0
 
LVL 5

Accepted Solution

by:
nashim khan earned 400 total points
ID: 39799367
Hi,

Yes Will is right, But FYI see the below Link.


http://www.digicert.com/csr-creation.htm
0

Featured Post

Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In my humble opinion (IMHO), TouchDown from Symantec is the best in class for this type of application, but Symantec has end-of-lifed it and although one can keep using it, it will no longer be supported or upgraded.  Time to look for alternatives t…
I’m willing to make a bet that your organization stores sensitive data in your Windows File Servers; files and folders that you really don’t want making it into the wrong hands.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…

601 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question