I am implementing an Exchange 2007 system which consists of two-node Load-balancing ISA Reverse Proxy Servers, two-node Load-balancing Exchange 2007 Hub/CAS and two-node Exchange 2007 Mailbox Cluster. I would like to use SSL Certificates with OWA, ActiveSync and Outlook Anywhere. How many certificates do I need? Any help will be appreciated.
Posts: 3436
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline
You probably just need to one certitifcate which will be installed on your CAS servers using a common name e.g. mail.mydomain.com. You do not need external SSL for mailbox servers or ISA.
_____________________________
Peter Hutchison MCP Exchange Administrator University of Huddersfield
100$ !!! tell me what the CA company name???? come on man i have a running project for exchange 2007 and i have to buy a SAN Certificate it costed me around £5,170 for 10 common names
i think it wil be more than 100$
_____________________________
Ahmad Ramadan AbaYazeed Senior Systems Projects Engineer
good to know but tell me mate from who did u buy it? coz i am contacting versign right now and this is the prise that they gave for 11 common names!!!!
_____________________________
Ahmad Ramadan AbaYazeed Senior Systems Projects Engineer
i check the link and does it support Exchange 2007?? does it support multiple common name in my case 11 common name?? and why do u think versign is that expensive, do u know??? is it reliable and widley international known certificate??
tell me from your experience what do u think of this certificate..
i am gonna check this out with the project manager and see what we will do
waiting ur reply ASAP
_____________________________
Ahmad Ramadan AbaYazeed Senior Systems Projects Engineer
When you have chosen your certificate the installation procedure on Microsoft Exchange 2007 server should be, depending on your SSL Cert something like:
1. Once you received your SSL certificate by e-mail, please copy and paste it into a text file (with Notepad or Wordpad) and save the file with the .crt extension. (Include the tags -----BEGIN CERTIFICATE----- and -----END CERTIFICATE-----). 2. Copy your .crt file to c:\ on your Exchange Server. 3. Launch the Exchange Management Shell (located in Start > Programs > Microsoft Exchange Server 2007). 4. Run these commands (change the certificate_name.crt): Import-ExchangeCertificate -Path C:\certificate_name.crt Enable-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS" The Services option can be any combination of: IMAP, POP, UM, IIS and SMTP. 5. Check that your certificate is enabled with this command line: Get-ExchangeCertificate -DomainName yourdomainname 6. In response to the above command, you should see the certificates thumbprint, the list of the services and the name of your certificate file. If your certificate isn't properly enabled, you can re-run the modified Enable command with the certificate thumbprint: Enable-ExchangeCertificate -Thumbprint [paste thumbprint here] -Services "SMTP, IMAP, POP, IIS" 7. Reboot your server. 8. Test your certificate by connecting with IE, Outlook or ActiveSync.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Microsoft Exchange 2007] >> Secure Messaging >> SSL Certificate 
SSL Certificate - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread
