This document was created to assist with the use of an SSL certificate in Microsoft Exchange 2010. If this document can not be used within the environment, RapidSSL recommends contacting an organization that supports Microsoft Exchange 2010.
Step 1: Download the RapidSSL certificate
- Download the RapidSSL certificate. Use any Microsoft platform when downloading to recieve a PKCS#7 formated certificate.
Step 2: Install the RapidSSL Certificate
- Start the Exchange Management Console (EMC) by going to Start > Programs > Microsoft Exchange 2010 > EMC.
- Select Manage Databases, and then select Server configuration.
- Select the certificate from the center menu (listed by its Friendly Name), and then select Complete Pending Request from the Actions menu.
- Browse to the certificate file, then select Open > Complete.
NOTE: Occasionally Exchange 2010 will display the error message "The source data is corrupted or not properly Base64 encoded." Please ignore this error. Although the error may appear, the certificate often still installs correctly. Press the F5 key to refresh the certificate and verify that it now says False under Self Signed. If it still shows True, the wrong certificate may have been selected or the request may have been generated on a different server. To resolve this issue, create a new CSR on the Exchange server and replace the certificate.
- To enable the certificate, go back to the Exchange Management Console.
- Select Manage Databases, and then select Server configuration and click on the link Assign Services to Certificate.
- Select the services for which the certificate must be enabled then click Next > Assign > Finish.
- The certificate is now installed and enabled for use with Exchange 2010.
- Test the certificate with the RapidSSL Installation Checker.
Note: If using ISA 2004 or ISA 2006, a reboot is recommended. It has been reported that ISA services won't send the intermediate certificate until after a reboot.
For more information, refer to the Microsoft Knowledge base