How To Generate Free SSL Certificate For Exchange Server
Establish a secure connection and email flow with a free SSL certificate for exchange by lets-encrypt.
An Exchange Server needs a Valid Third-Party SSL Certificate to fully function.
Though, Exchange has its own self-signed certificate already installed.
However, these certificates are not trusted by other devices.
So, An Exchange Server should have a proper and valid SSL certificate.
There are many third-party SSL providers that provide these certs like DigiCert, comodo, etc.
Companies deploying exchange for production avail these certificates from the trusted CA.
However, in the case of training and small-medium business.
Sometimes, it’s a challenge to install a valid SSL to test with all exchange features.
For example Autodiscover connectivity and hybrid migration to office 365.
Let’s Encrypt provides the free SSL service, that can be installed on an Exchange server to make the testing successful.
Generate Free SSL Certificate With Let’s Encrypt
With the help of Let’s encrypt win acme.
You can install the SSL Certificate on your exchange server.
Though, let’s encrypt provides SSL Certificate for multiple platforms and services.
But here we will only focus on installing SSL on the exchange server 2016.
Steps To Generate Free SSL Certificate
You need to download the Win acme from win-acme.com/
Once you download it.
Create a folder by the name of Tools inside C drive.
Extract the files to this “Tools” folder.
Now open the command prompt with administrator privileges
Navigate to the tools directory, where the wacs.exe is located.
Once you are in the tools directory.
Now run the following command and hit enter.
Make sure to change the name of your domain and service like Owa and Autodiscover.
In this case, the domain name is getsupportlink.com
So, the main certificate will be issued to the host getsupportlink.com
Therefore, it also includes two other subject alternative names
mail.getsupportlink.com & autodiscover.getsupportlink.com
If the above command executes successfully.
The free SSL Certificate will be installed on your exchange server.
Therefore, it will also assign the certificate to the service IMAP, IIS & SMTP
Check Your Certificate Installation
To make sure that, installation of the SSL certificate to an Exchange server is successful.
You can visit the site digicert.com/help/
Put your domain name and click on the check server.
You will get the final result as below if the installation is successful.
Here, you can verify the common name and subject alternative name as well as.
Furthermore, if you need more clearance on the topic.
You can watch the following video to install free SSL on your exchange via let’s encrypt.
Few of more query was resolved by let’s encrypt such as
Do Let’s Encrypt support free SSL for Certificate for IIS?
Yes, you can install let’s encrypt certificates for IIS Website as well.
Is the Let’s Encrypt certificate is completely free?
Yes, there is no charge for this certificate.
However, it renews certs automatically within the time period of 3 months.
Are Free SSL Certificates safe?
Yes, as they are providing encryption communication between two devices.
They are safe, it is good to have even a free SSL cert, instead of using no certificate.
However, it validates the domain and may restrict it for the time period.
For example: comodo offers the trial certificate for 30 days only
Though, it does not include the subjective alternative name on cert.
If you talk about let’s encrypt, they provide you cert for only 90 days, and then you have to again renew it.
They do not offer free SSL for a complete one year.
If you can purchase a valid third-party certificate that is best.
Having a free SSL certificate for your servers is better than no security.
So, you can install the free SSL Certs for testing and training purposes.
Moreover, in many cases, they are also used in small-medium businesses as well.