Donnerstag, 15. Januar 2009

openssl exchange 2007

Zertifikat erstellen



openssl req -config /Path/to/openssl.cnf -nodes -new -keyout ${CA}/private/${NAME}.key -out ${CA}/csr/${NAME}.csr
openssl ca -out ${CA}/certs/${NAME}.crt -in ${CA}/csr/${NAME}.csr


Zertifikat in pkc12 exportieren



openssl pkcs12 -export -in ${CA}/certs/${NAME}.crt -inkey ${CA}/private/${NAME}.key -certfile ${CA}/cacert.pem -out ${NAME}.pfx


Zertifikat importieren


Exchange Management Shell

Import-ExchangeCertificate -Path HOSTNAME.pfx -Password:(Get-Credential).password
Get-ExchangeCertificate
   > XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX    XXX        XXXXXXXXX
   > YYYYYYYYYYYYYYYYYYYYYYYYYYYYYYYY    YYY        YYYYYYYY
Enable-ExchangeCertificate -Thumbprint XXXXXXXXXXXXXXXXXXX -Services IIS,SMTP
Remove-ExchangeCertificate -Thumbprint YYYYYYYYYYYYYYYYYYY


Das ganze funktioniert nur wenn Hostname im Cert steht
Eingestellt von um

Keine Kommentare:

Kommentar veröffentlichen

Abonnieren Kommentare zum Post (Atom)