Ask a Question

Advanced Search

Solution ID : SO26628

Last Modified : 05/02/2018

Certificate Signing Request (CSR) Generation Instructions - Microsoft Exchange 2013


This document provides instructions for generating a Certificate Signing Request (CSR) for Exchange 2013. If you are unable to use these instructions for your server, GeoTrust recommends that you contact Microsoft.

Note: To generate a CSR for Microsoft Exchange 2013 using the Exchange Management Shell (command line) please follow the instructions located here.

To generate a CSR for Microsoft Exchange 2013 using IIS perform the following steps:

  1. Start IIS by selecting Tools >  Internet Information Services (IIS) Manager

  2.  Select Server Certificates

  3. Select Create Certificate Request on the right side

  4. Complete in full all the required fields in the new page that will appear.

    Common Name: The Fully Qualified Domain Name that the certificate will be issued to and secure.
    Organization: The Registered Organizational Name the certificate belongs to.
    Organizational Unit: The Department within the Organization
    City/locality: The Business registered location (not the actual server location)
    State/province: The Business registered state or province (do not abbreviate)
    Country/region: The two letter country code
  5. Select Next
  6. Select 2048 from the Bit Length: drop down list.
  7. Select Next
  8. Specify the file name and location for the certificate request file

  9. Select Finish
  10. Open the saved text file and when requesting a certificate, be sure to include the header and footer: