Exchange 2010 SSL Certificate request

Hi All,
    Im trying to create a Certificate request on a local Exchange 2010 server as the existing is due to expire next month. I have tried a few ways to complete the request (GUI is failing EMC>ServerConfig>New Exchange Cert). I have tried via the command line with the following:

Existing Cert:
DNS Name=autodiscover.<ExternalDomain>.com
DNS Name=www.autodiscover.<ExternalDomain>.com
DNS Name=www.autodiscover.<ExternalDomain>.com
DNS Name=pop3.<ExternalDomain>.com
DNS Name=<Server>.<InternalDomain>.local
DNS Name=smtp.<ExternalDomain>.com
DNS Name=autodiscover.<InternalDomain>.local
DNS Name=<Server>
DNS Name=owa.<ExternalDomain>.com

I have defaulted to the Following site to support the creation of the Cert:
https://www.digicert.com/easy-csr/exchange2010.htm
Created the following Script:
Set-Content -path ".\Autodiscover_<Domain>_com.txt" -Value (New-ExchangeCertificate -GenerateRequest -KeySize 2048 -SubjectName "c=GB, s=<UK City>, l=<UK City>, o=<BusinessName>, ou=IT, cn=Autodiscover.<ExternalDomain>.com" -DomainName autodiscover.<ExternalDomain>.com, pop3.<ExternalDomain>.com, smtp.<ExternalDomain>.com, owa.<ExternalDomain>.com -PrivateKeyExportable $True)

But the above just Hangs on "Creating a new session for implicit remoting of "New-ExchangeCertificate" command.....

Am i missing something simple here?
LVL 5
ncomperAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

AmitIT ArchitectCommented:
I assume you are planning to renew your old cert. If it is 3rd party cert. You can goto 3rd party site and renew it directly. Don't need to create CSR. Make sure old cert was created from same server,  so you can avoid private key issue.

Or follow this
https://technet.microsoft.com/en-us/library/dd351057(v=exchg.141).aspx
ncomperAuthor Commented:
Thanks Amit,
   The certificate was initially purchased via the old 3rd part support company so we do not have the ability to renew, this was initially via Godaddy so we are looking to renew with them. I have tried to follow the above URL before but the GUI throws errors each time i have tried to create the request hence the Script to create and this is also hanging
AmitIT ArchitectCommented:
You can use godaddy or digicert tool to generate from any machine. Make sure you export private key, before you are importing on Exchange server.
Cloud as a Security Delivery Platform for MSSPs

Every Managed Security Service Provider (MSSP) needs a platform to deliver effective and efficient security-as-a-service to their customers. Scale, elasticity and profitability are a few of the many features that a Cloud platform offers. View our on-demand webinar to learn more!

ncomperAuthor Commented:
Right, i wonder, could it have been possible that the previous IT company created the certificate within IIS rather than via the exchange management? If so is there a way that i can request the new certificate this way and apply it to the server via the IIS rather than the exchange?

We are moving to Exchange 365 in the next 3 months anyway so i am happy for this to be a short term fix to get us through the next 6-12 months.

thanks
AmitIT ArchitectCommented:
There are several ways to create csr, IIS can also be used to create it.
ncomperAuthor Commented:
can you point me in the right direction within IIS to create a Multi Domain CRS to ensure the certificate request includes the following:
Autodiscover.<ExternalDomain>.com
pop3.<ExternalDomain>.com,
smtp.<ExternalDomain>.com,
owa.<ExternalDomain>.com

as the default IIS GIU does not allow for the request to be built (will i need to complete with powershell?

Thanks,

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ncomperAuthor Commented:
The above where the steps that allowed me to bypass the issue i had
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.