During Edge server configuration, you are required to bind a certificate to edge server for securing edge server communication. For this you have to run a powershell command which will generate a required CSR for you ( I have discussed a tool for CSR generation in my previous blog http://khurramullah.wordpress.com/2009/07/01/exchange-2007-certificate-request-generator/). Here in this blog i will discuss the powershell command for CSR generation. A typical command will be like this
New-ExchangeCertificate -GenerateRequest -Path c:\Server1_Contoso_com.csr -KeySize 1024 -SubjectName "c=SG, s=, l=Singapore, o=Fictious Enterprise, ou=Information Technology, cn=Server1.Contoso.com" -PrivateKeyExportable $True
There are some important parameters in this command which i will discuss below
Path: The path where the CSR file will save.
KeySize: possible values are 1024, 2048.
Subject Name: Subject name consists of different parameters which are;
c=Country, c=State, I=City, o= organization, ou=organization unit or department, cn=common name (for example the public name of your website)
PrivateKeyExportable: This will mark the key as exportable so you can backup it and deploy it to another server if required.
3 responses so far ↓
Importing Certificates to Exchange servers « K2 Base Camp // July 1, 2009 at 1:52 AM
[...] About ← Command for Generating CSR for Exchange servers [...]
Publishing Exchange 2007 OWA via ISA 2006 Reverse Proxy « K2 Base Camp // July 6, 2009 at 1:57 AM
[...] (http://khurramullah.wordpress.com/2009/07/01/exchange-2007-certificate-request-generator/ and http://khurramullah.wordpress.com/2009/07/01/command-for-generating-csr-for-exchange-servers/) if you have more than one CAS servers then you have to repeat the steps for all of [...]
flashplayer // July 7, 2009 at 4:45 PM
Cool!