During Edge server configuration, you are required to bind a certificate to edge server for securing edge server communication. For this you have to run a powershell command which will generate a required CSR for you ( I have discussed a tool for CSR generation in my previous blog http://khurramullah.wordpress.com/2009/07/01/exchange-2007-certificate-request-generator/). Here in this blog i will discuss the powershell command for CSR generation. A typical command will be like this
New-ExchangeCertificate -GenerateRequest -Path c:\Server1_Contoso_com.csr -KeySize 1024 -SubjectName "c=SG, s=, l=Singapore, o=Fictious Enterprise, ou=Information Technology, cn=Server1.Contoso.com" -PrivateKeyExportable $True
There are some important parameters in this command which i will discuss below
Path: The path where the CSR file will save.
KeySize: possible values are 1024, 2048.
Subject Name: Subject name consists of different parameters which are;
c=Country, c=State, I=City, o= organization, ou=organization unit or department, cn=common name (for example the public name of your website)
PrivateKeyExportable: This will mark the key as exportable so you can backup it and deploy it to another server if required.
No comments:
Post a Comment