The following instructions will guide you through the SSL installation process on Microsoft Exchange 2013.
-
Make sure you have all the following files saved before proceeding:
-
Your Server Certificate - This is the certificate you received from the CA for your domain. You may have been sent this via email. If not, you can download it by visiting your Account Dashboard and clicking on your order.
-
Intermediate Certificates - These files allow the devices connecting to your server to identify the issuing CA. There may be more than one of these certificates. If you got your certificate in a ZIP folder, it should also contain the Intermediate certificate(s), which is sometimes referred to as a CA Bundle. If not, Download your appropriate CA Bundle File Here
-
Your Private Key - This file should be on your server, or in your possession if you generated your CSR from a free generator tool. On certain platforms, such as Microsoft IIS, the private key is not immediately visible to you but the server is keeping track of it.
-
-
Copy your SSL Certificate to your Exchange Server's Network Share Folder.
Note: This should be the same location where you saved you CSR.
-
Open the Exchange Admin Center, this can be done by opening a browser and visiting:
https://localhost/ecp -
Log in.
-
In the left column, select Servers, then Certificates from the top-right.
-
Choose your SSL Certificate from the menu, then select Complete.
-
Enter the network path where your certificate file is located.
-
Select OK, and the certificate will be installed on the server.
-
To enable your SSL Certificate, go back to the Certificates section of the Exchange Admin Center (from Step 5).
-
Select the Certificate you would like to enable and click Edit.
-
Click the Services option and select the services you would like you SSL Certificate enabled for, then click Save.
Congratulations! You've successfully installed your SSL certificate!
To check your work, visit the website in your browser at https://yourdomain.tld and view the certificate/site information to see if HTTPS/SSL is working properly.
Remember, you may need to restart your server for changes to take effect.