Deploying Exchange 2013 SP1 step by step – Part2

In Part1  we prepared AD and installed the first Exchange Server. This part will be devoted to the installation of the wildcard Exchange certificate.

Let’s start off with determining the “mail”namespace this Exchange organisation will use:

Internal access –
External access –
Autodiscover –

For the sake of simplicity I’ll prefer split-DNS configuration with the same internal and external host names. Autodiscover will be placed on its own site – Therefore  I must add to the local (and external as well) DNS zone the following records:

A =
A =

232 (I won’t publish a picture of adding the other A record for – it’s exactly the same).

Now let’s run ECP (servers/certificates), review the default Exchange certificates…

…and create a new certificate request.201

In the next window enter a friendly certificate name, press Next and don’t forget to type * and . before the domain name in the new Exchange certificate window:204206



As we’ll need to submit this request to the local CA let’s open TestCompany-WC.REQ and  copy its content.


Then connect to and submit the requst.




215Paste the copied content of the TestCompany-WC.REQ file into the Saved Request field, select TestCompany-WEB certificate template created in Part1 and click Submit.



Save the issued certificate to the appropriate location (I’ll save to \\dc\share).


Next we must complete the pending request in the ECP console …220


…and assign the wildcard certificate to the appropriate services (we can’t use a wildcard certificate for IMAP and POP).



Finally  in IIS console we need to enter the hostname the CAS server we’ll be using for client connections – – and make sure the new certificate is working:






In Part2 of the series of articles on deploying Exchange 2013SP1 we defined a namespace for the Exchnage organisation and installed a wildcard certificate on In the next part we’ll proceed with configuring Exchange virtual directories.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: