This step ties the certificate to one or more Exchange services,
such as POP or Outlook Web Access. Behind the scenes, the cmdlet is updating values in the IIS
metabase. The cmdlet Enable-ExchangeCertificate is used for this purpose:
Enable-ExchangeCertificate -Thumbprint < String > -Services < None | IMAP |
POP | UM | IIS | SMTP > [-DomainController < Fqdn > ]
The thumbprint is the unique identifier for the certificate, which can be displayed with the
Get-ExchangeCertificate cmdlet. This cmdlet also shows which certificates are currently
enabled for which services.
The Services switch specifies which of the services will use the certificate. For example, to enable a
certificate for OWA, POP, and IMAP the cmdlet would be:
Enable-ExchangeCertificate -thumbprint
77BADDFAAACB0D3340F60B7D45029968D3F0A75E -Services Pop,Imap,IIS
Copy the Certificate
If you have multiple Client Access Servers or ISA servers at the edge, then you may need to copy the
certificate to those servers. The easiest way to back up the certificate is with the certificate manager
MMC snap - in. After launching the snap - in, a dialog box prompts you to choose which certificate store to
manage. Select the Computer Account option and the local computer (this assumes running this on the
CAS server). In the Personal store, right - click the certificate and choose Export.
Pages:
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275