Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Creating SSL for exchange server 2010

Posted on 2014-01-21
2
Medium Priority
?
295 Views
Last Modified: 2014-01-28
Hi

We are going to migrate from exchange 2007 to 2010. one of the IT service company is going to do this migration for us. I have not still built the Exchange 2010 server yet.

In advance I thought of buying  SSL and keeping it ready for the webmail access. Now the SSL company has asked me to create CSR and submit to create a SSL.

To create a CSR do I need create it on the designated new Exchange server, which I am going to build. Or can I create the CSR on any server on our network and submit for the SSL creation.  

Thanks
0
Comment
Question by:lianne143
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 53

Assisted Solution

by:Will Szymkowski
Will Szymkowski earned 1600 total points
ID: 39796583
Typically you will need to create the CSR on the new Exchange server. You will want to purchase a sAN/UCC cert and then add then following names to it...
- autodiscover.domain.com
- mail.domain.com
- legacy.domain.com

The legacy.domain.com will be the URL you will use for your old Exchange server while the transition is happening. When users connect to your 2010 CAS server if their mailbox resides on 2007 they will be redirected to the legacy.domain.com URL automatically.

Once you have the CSR created it will be exportable. So you can import the cert into the new Exchange server (assign the services to the cert IIS, SMTP) then you can export the cert and import it on all other CAS servers (this also includes the 2007 exchange CAS servers).

If you are also using a load balancer you can also assign the cert to this instead of putting it on all of the Exchange servers.

Will.
0
 
LVL 5

Accepted Solution

by:
nashim khan earned 400 total points
ID: 39799367
Hi,

Yes Will is right, But FYI see the below Link.


http://www.digicert.com/csr-creation.htm
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question