Installation instructions for Microsoft Exchange 2010 server

Solution ID:    SO18078    Updated:    01/30/2017


This document was created to assist with the use of an SSL certificate in Microsoft Exchange 2010.  If this document can not be used within the environment, RapidSSL recommends contacting an organization that supports Microsoft Exchange 2010.

Step 1: Download the RapidSSL certificate

  1. Download the RapidSSL certificate.  Use any Microsoft platform when downloading to recieve a PKCS#7 formated certificate.

Step 2: Install the RapidSSL Certificate

  1. Start the Exchange Management Console (EMC) by going to Start > Programs > Microsoft Exchange 2010 > EMC.
  2. Select Manage Databases, and then select Server configuration.
  3. Select the certificate from the center menu (listed by its Friendly Name), and then select Complete Pending Request from the Actions menu.
  4. Browse to the certificate file, then select Open > Complete.

    NOTE: Occasionally Exchange 2010 will display the error message "The source data is corrupted or not properly Base64 encoded." Please ignore this error.  Although the error may appear,  the certificate often still installs correctly. Press the F5 key to refresh the certificate and verify that it now says False under Self Signed. If it still shows True, the wrong certificate may have been selected or the request may have been generated on a different server. To resolve this issue, create a new  CSR on the Exchange server and replace the certificate.

  5. To enable the certificate, go back to the Exchange Management Console.
  6. Select Manage Databases, and then select Server configuration and click on the link Assign Services to Certificate.

  7. Select the services for which the certificate must be enabled then click Next > Assign > Finish.
  8. The certificate is now installed and enabled for use with Exchange 2010.
  9. Test the certificate with the RapidSSL Installation Checker. 

    Note: If using ISA 2004 or ISA 2006, a reboot is recommended. It has been reported that ISA services won't send the intermediate certificate until after a reboot. 

           For more information, refer to the Microsoft Knowledge base  


RapidSSL has made efforts to ensure the accuracy and completeness of the information in this document. However, RapidSSL makes no warranties of any kind (whether express, implied or statutory) with respect to the information contained herein. RapidSSL assumes no liability to any party for any loss or damage (whether direct or indirect) caused by any errors, omissions, or statements of any kind contained in this document.  Further, RapidSSL assumes no liability arising from the application or use of the product or service described herein and specifically disclaims any representation that the products or services described herein do not infringe upon any existing or future intellectual property rights. Nothing herein grants the reader any license to make, use, or sell equipment or products constructed in accordance with this document. Finally, all rights and privileges related to any intellectual property right described herein are vested in the patent, trademark, or service mark owner, and no other person may exercise such rights without express permission, authority, or license secured from the patent, trademark, or service mark owner. RapidSSL reserves the right to make changes to any information herein without further notice.

Contact Support

US Support:

Order Processing

Technical Support

European Support:

Order Processing

Technical Support

SSL digital certificates sales live chat.

Find Answers

Search Tips