37 C
Monday, July 22, 2024

Configuring 3rd Party SSL Exchange Certificate in Exchange 2013

Exchange 2013 creates a self-signed SAN certificate and assigns it to the services like IMAP, POP, IIS, and SMTP.The only drawback of this self-signed certificate is that it contains the server’s FQDN and NetBIOS names only.Where we get certificate errors on all the Clients where we need to install the Self signed Certificates manually on all the clients , which is a hassle and no one likes it in fact .

To avoid any certificate related errors and use it over the internet without any problems it is highly recommended that you request and assign a certificate from a Certification Authority that can be contacted from anywhere like DigiCert,VeriSign,Go Daddy etc.. .

To request a new certificate from a trusted CA use following format:

Step 1:

Requesting a Certificate , you can use Exchange Management shell or GUI

GUI is much user friendly

You can refer the link below to use GUI and Export the Exchange Certificate

How to Create an SSL Certificate Request for Exchange Server 2013

Step 2:

Use this request file for submission to the CA and download the certificate. Save the certificate to a convenient location.


Upload the CSR (.req) file to the third party Cert providers like DigiCert.


And once the Verification Process completes. you can download the Cert from their Portal.

Step 3:

To Import the Generated certificate


How to Complete a Pending SSL Certificate request in Exchange Server 2013

Great !!

You learnt how to Export and Import Exchange Certificates in Exchange 2013

Satheshwaran Manoharan
Satheshwaran Manoharanhttps://www.azure365pro.com
Award-winning Technology Leader with a wealth of experience running large teams and diversified industry exposure in cloud computing. From shipping lines to rolling stocks.In-depth expertise in driving cloud adoption strategies and modernizing systems to cloud native. Specialized in Microsoft Cloud, DevOps, and Microsoft 365 Stack and conducted numerous successful projects worldwide. Also, Acting as a Technical Advisor for various start-ups.

Related Articles


  1. Hi,

    i am having problems with my internal outlook clients connecting to our internal exchange server 2013, can you please confirm that i do indeed require a CA certificate for internal users to connect to the exchange server, or are CA only meant for external clients (OWA etc).

    any help would be very much appricated. many thanks in advance.

    Ajay Paul

  2. Hey!
    how can import an cert to an Exchange 2013!
    For few Days have harddrive crash on that was my Exchange 2013 server with 3:e parts certficate
    can i do Pending SSL Certificate request then import my cert then have from my Go Daddy

  3. Hello Sateshwaran, by following your tutorial my multi tenant exchange is ready now ..
    I am now ready to sell mailboxes and my problem is that I can’t buy expensive mailbox migration tools so is it possible to migrate customers
    Mailboxes without using these expensive tools ?

    2ndly mailboxes working fine with OWA, IOS, Android but with outlook it asks every time for password when i open outlook any idea ?


  4. Hello Sateshwaran. my multi tenant exchange is ready by following your tutorial
    I am now ready to sell mailboxes and my problem is that I can’t buy expensive mailbox migration tools so is it possible to migrate customers Mailboxes without using these expensive migration tools ?

    2ndly mailbox connectivity with Android,IOS, OWA working fine but with Outlook it always ask for Password when i open Outlook any idea ?


    • Re check Outlook anywhere settings. Are you using Autodiscover redirect.?
      cheapest – DO Manual PST migration Add X500 . You have to get ready handling the nightmare of NDrs and unhappy customers.


Please enter your comment!
Please enter your name here

× How can I help you?