Requesting an SSL certificate for your Microsoft Exchange 2007 server requires a Certificate Signing Request (CSR). Follow these instructions to generate a CSR for your website. After you generate your CSR, copy and paste it into the CSR field on the
c— Two-letter country code of your organization's country of residence
l— Full name of your organization's locality or city
s— Full name of your organization's state or province
o— Your Organization's legally registered name (company or person's first and last name)
cn—The first/main Fully Qualified Domain Name (FQDN) to be secured that will always be visible in the certificate details
-domainname— The comma-separated list of additional domains that are included in your certificate and referred to as Subject Alternative Names (SANs). Deciding what SANs to use depends on the services you are running. You need to know how your server is configured to properly secure everything. But, depending on your configuration, consider adding the following SANs:
Note: You don't need to request a new CSR each time you add or remove a SAN. Our SSL Management console allows you to manage SANs without generating new CSRs each time you want to add or remove a SAN.
-PrivateKeyExportable $true— Keep this command if you want to enable export of the requested certificate so you can import it into a client's computer or another server.
-path c:\certrequest.txt— The complete path and filename where the resulting CSR file is placed when generated. In this example, once the CSR is created, you will find it on the root of your C: Drive.