Create an SSL certificate request file
Navigate to Servers > certificates. On the Certificates page, select the appropriate client Access server in the Select Server field, and then click +.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKioL1d_IESw8wGbAAB1gQFBBIs910.jpg "/>
In the New Exchange Certificate Wizard, select Create a request to obtain a certificate from a certification authority, and then click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKiom1d_IETjq7Q9AAC13y3iznY650.jpg "/>
Specify a name for this certificate, and then click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKioL1d_IEWzPxBsAACc9LLp4-k535.jpg "/>
If you want to request a wildcard certificate, tick the wildcard certificate request, and then specify the root domain of all subdomains in the root domain field. Instead of requesting a wildcard certificate here, you want to specify each domain that is added to the certificate, leaving this page empty. Click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKiom1d_IEjTAv52AAB-RGZPda8882.jpg "/>
Click Browse to specify that you want to store the certificate on the Exchange server. The selected server should be on the Internet-facing client Access server. Click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKiom1d_IEnicNKhAACTt8kKqko418.jpg "/>
For each service that is displayed in the list, specify the external or internal server name that the user will use to connect to the Exchange server. For example, Mail.bjn99.cn may be specified for Outlook Web App (when accessed from the Internet). For OWA (when accessed from an intranet), you may specify owa.bjn99.cn. These names will be used to create the SSL certificate request. Click Next.
Note: (When accessing from the Internet) are filled in, please fill in according to the actual situation of the enterprise.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKioL1d_IEmwxglqAADesHbZFLc824.jpg "/>
Depending on your selection, the following domains will be included in the certificate. You can add additional domains here, or make changes. Click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKiom1d_IErz7d1cAACnoF56_3w146.jpg "/>
Provides information about your organization. This information will be included in the SSL certificate. Click Next.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKiom1d_IEqBxO-9AADAC10UzTc603.jpg "/>
Specify the network location where you want to save the certificate request (you need to add the full certificate name). Click Finish.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKioL1d_IEvwfa94AAC9q0pXgjU359.jpg "/>
Request CA Certificate
After the certificate request file is saved, the request is submitted to the (CA) certification authority. However, an internal CA or a third-party CA. The following is a certificate request through an internal CA:
Enter the http://ad.gianthard.com/certsrv/address in the browser and enter the appropriate account name and password. Enter the Welcome screen and click on "Request a certificate".
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKioL1d_IEuSgWABAABoQ0bExhc661.jpg "/>
Click on "Request a certificate".
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKiom1d_IEyz_5G-AABw5fptF-g835.jpg "/>
Click on "Advanced Certificate Request".
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKioL1d_IEyhOkmSAAA5f0vmUIA285.jpg "/>
Click either submit a certificate request using the Base64 encoded CMC or PKCS #10 file, or renew the certificate request using Base64 encoded PKCS #7 file.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKiom1d_IEzCOANOAABYCH3B0YM762.jpg "/>
From Notepad, open the certificate request file and copy all the contents.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKioL1d_IE2ihQa3AAJsc-P_Dc0204.jpg "/>
Paste to "Saved Request" and select "Web Server" in the certificate template and click "Submit".
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKiom1d_IE7SAsR6AACD4boY-ck617.jpg "/>
Download the certificate and save it to a shared folder temporarily.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKioL1d_IE7CNrLJAAA-xGh2WgQ189.jpg "/>
Complete a certificate hold request for Exchange
Navigate to Servers > certificates. On the Certificates page, select the appropriate client Access server in the Select Server field, and then select the certificate request to create the SSL certificate request file in 2.5. In the details pane of the certificate request, click Finish under Status.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E3/wKiom1d_IE_xFZFZAABj1vJwMwE202.jpg "/>
On the Completing the Shelve Request page, specify the path of the SSL certificate file, and then click OK.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E3/wKiom1d_IE_DPnZ6AACZXh8Rq-k959.jpg "/>
Select the new certificate that you just added, and then click Edit, on the Certificates page, click Services. Select the service that you want to assign to this certificate. You should select at least SMTP and IIS. Click Save to complete the certificate configuration.
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKioL1d_IE_wNJ4CAACJJxA_30Y791.jpg "/>
Select Export Exchange certificate;
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E3/wKiom1d_IFDSO4ErAABs1U8_IIg278.jpg "/>
Enter the path to export the Exchange certificate, and the password to complete the export;
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E2/wKioL1d_IFDyCCZdAACWc9ueqU4545.jpg "/>
Import the Exchange certificate;
Select the server where you want to import the certificate, and select Import Exchange certificate;
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M01/83/E3/wKiom1d_IFGAkgEAAAB726eohVs233.jpg "/>
Enter the full path of the certificate and password information;
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E2/wKioL1d_IFGBV7iqAACfKh9UvTg838.jpg "/>
Select the application Certificate of the server, EXCAS01, EXCAS02;
650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M02/83/E3/wKiom1d_IFKBO-2RAACyNc-yKPg191.jpg "/>650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E2/wKioL1d_IFKTyO2qAACuqbEGznw731.jpg "/>650) this.width=650; "src=" http://s3.51cto.com/wyfs02/M00/83/E3/wKiom1d_IFOBbzHCAACVCQLTFpg661.jpg "/>
assigning services to certificates;
Double-click the certificate, and select the appropriate service: SMTP, IMAP, POP, IIS;
650) this.width=650; "Width=" 475 "height=" 415 "title=" 111111111.jpg "style=" WIDTH:416PX;HEIGHT:366PX; "src="/HTTP/ S1.51cto.com/wyfs02/m01/83/e4/wkiol1d_qnrbegkoaacjy4bbavo341.jpg-wh_500x0-wm_3-wmp_4-s_1007445784.jpg "alt=" Wkiol1d_qnrbegkoaacjy4bbavo341.jpg-wh_50 "/>
This article from "Nuzhihai" blog, reproduced please contact the author!
EXCHANGE2013 certificate Request (vi)