Ask a Question

How to install an SSL Certificate in Microsoft Exchange 2003

Solution

To install a GeoTrust SSL certificate in Microsoft Exchange 2003 server, perform the following steps:

Step 1: Obtain the GeoTrust Intermediate CA

 
b) Copy and paste the Intermediate CA into a Notepad and save as "intermediate.txt".
 

Step 2: Create a Certificates Snap-in in the Microsoft Management Console (MMC):

  1. From the Web server, click Start
  2. In the Search programs and files field, type mmc
  3. From the Programs list, click mmc.exe
  4. At the permission prompt, click Yes
  5. From the Microsoft Management Console (MMC), click  File > Add/Remove Snap-in
  6. From the list of snap-ins, select Certificates
  7. Click Add
  8. Select Computer account
  9. Click Next
  10. Select Local computer (the computer this console is running on)
  11. Click Finish
  12. In the Add/Remove Snap-in window, click OK
  13. Save these console settings for future use
     

Step 3: Install the GeoTrust Intermediate CA certificate

  1. Using the same Console, double-click on Intermediate Certification Authorities from the right pane
  2. Right-click on Certificates from the right pane and select All Tasks > Import to open the Certificate Import Wizard
  3. Click Next
  4. Specify the location of the GeoTrust intermediate file obtained from Step 1 by clicking Browse
  5. Click Next
  6. By default, it will place the certificate in the Intermediate Certification Authorities store. Keep this selection and click on the Next button.
  7. Click Finish
  8. A message will appear confirming the successful import of the certificate. Click OK
     

 Step 4: Install the SSL certificate

GeoTrust will send the SSL certificate via email.

Copy the contents of the SSL certificate and paste it into a Notepad. 

The text file should look like:
 
-----BEGIN CERTIFICATE-----
[encoded data]
-----END CERTIFICATE-----


Note: Make sure there are 5 dashes to either side of the BEGIN CERTIFICATE and END CERTIFICATE and that no white space, extra line breaks or additional characters have been inadvertently added. Save the file with the extension of .cer.

Or, download the certificate as per the instruction on the following solutions:


Once the certificate has been saved, start the Web Server Certificate Wizard and install the certificate. Refer to the steps below: 

  1. Click Start Programs Microsoft Exchange > System Manager
  2. If the Display administrative groups option is turned on, expand Administrative Groups, then expand First Administrative Group (where First Administrative Group is the name of your administrative group)

    Note: To display administrative groups, right-click Your_Organization Properties Display administrative groups check box, click OK twice, and then restart Exchange System Manager
     
  3. Expand Servers, expand the Exchange Server container that you want to configure, and then expand the Protocols container
  4. Expand each protocol that you want to configure, right-click the Default Protocol_Name virtual server object click Properties    
      
     
     
  5. Click the Access tab > Certificate    

     
     
  6. The Web Server Certificate Wizard starts and you receive notification that you have a pending certificate request, click Next
  7. On the Pending Certificate Request page, click Process the pending request and install the certificate, and then click Next    

     
     
  8. In the Process a Pending Request box, type the path of the certificate that you received from the external CA
  9. Review the Certificate Summary page, and then click Next

    The information that is contained in the certificate includes issuer, expiry date, what the certificate is to be used for. The certificate friendly name that appears on the Certificate Summary page is also included.
     
  10. After you receive notification that the certificate is successfully installed on the virtual server, click Finish

These instructions were extracted from Microsoft's website: http://support.microsoft.com/kb/823024