I found recently a situation where the Godaddy cert chain wasn’t installed and some phone clients had issues, the following is a proven request\import process to install the cert and chain.
So I gave this process to a friend and found out that I should either rename or subtitle this post, “Getting SBS 2008 to recognige your 2048 bit certificate” – great side effect!
- First make your cert request in powershell, it should look something like this:
- New-ExchangeCertificate -GenerateRequest -SubjectName “C=US, O=Company, CN=mail.domain.com” -domainname mail.domain.com,autodiscover.domain.com,hostname,hostname.domain.local -FriendlyName mail.domain.com -privatekeyexportable:$true -path c:\cert_myserver.txt
- IMPORTANT: don’t do any new cert requests or run any wizards until the cert is imported
- Send the cert request to Godaddy as a UCC certificate
- Import the Certificate to complete the request
- Import-ExchangeCertificate –Path “C:\CertificateFile.cer” | Enable-ExchangeCertificate -Services pop, smtp, iis, imap
- Export the certificate
- Start –> Run –> MMC –> Add Snap-in –> certificates –> Local computer
- Right click certificate –> all tasks –> export
- Include the certificate chain and private key
- Enter a password
- Re-Import certificate including chain (this imports the chain certs also)
- Right click in a blank area of the certificate MMC –> all tasks –> import
- Select the certificate you exported –> import –> include the certificate chain.
And yes there are other was to get to the same result, this is just a simple easy to explain way