Deploying Exchange 2013 SP1 step by step – Part2

In Part1  we prepared AD and installed the first Exchange Server. This part will be devoted to the installation of the wildcard Exchange certificate.

Let’s start off with determining the “mail”namespace this Exchange organisation will use:

Internal access – Mail.TestCompany.com
External access – Mail.TestCompany.com
Autodiscover – Autodiscover.TestCompany.com

For the sake of simplicity I’ll prefer split-DNS configuration with the same internal and external host names. Autodiscover will be placed on its own site – Autodiscover.TestCompany.com. Therefore  I must add to the local (and external as well) DNS zone the following records:

A Mail.TestCompany.com = 20.1.1.11
A Autodiscover.TestCompany.com = 20.1.1.11

232 (I won’t publish a picture of adding the other A record for Autodiscover.TestCompany.com – it’s exactly the same).

Now let’s run ECP (servers/certificates), review the default Exchange certificates…

…and create a new certificate request.201

In the next window enter a friendly certificate name, press Next and don’t forget to type * and . before the domain name in the new Exchange certificate window:204206

208

209

As we’ll need to submit this request to the local CA let’s open TestCompany-WC.REQ and  copy its content.

211

Then connect to https://dc.testcompany.com/certsrv and submit the requst.

212

213

214

215Paste the copied content of the TestCompany-WC.REQ file into the Saved Request field, select TestCompany-WEB certificate template created in Part1 and click Submit.

216

217

Save the issued certificate to the appropriate location (I’ll save to \\dc\share).

218

Next we must complete the pending request in the ECP console …220

222

…and assign the wildcard certificate to the appropriate services (we can’t use a wildcard certificate for IMAP and POP).

223

225

Finally  in IIS console we need to enter the hostname the CAS server we’ll be using for client connections – mail.testcompany.com – and make sure the new certificate is working:

226-1

227

32-CertReady

 

Summary:

In Part2 of the series of articles on deploying Exchange 2013SP1 we defined a namespace for the Exchnage organisation and installed a wildcard certificate on exch1.testcompany.com. In the next part we’ll proceed with configuring Exchange virtual directories.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: