Exchange Server 2016Exchange Server 2019Open Source

Free SSL Certificate For Exchange Server | 6 Easy Steps

Get Free SAN Certificate For Your Exchange Server

How To Generate Free SSL Certificate For Exchange Server 

Establish a secure connection and email flow with a free SSL certificate for exchange by lets-encrypt.

An Exchange Server needs a Valid Third-Party SSL Certificate to fully function.

Though, Exchange has its own self-signed certificate already installed.

However, these certificates are not trusted by the other devices.

So, An Exchange Server should have a proper and valid SSL certificate.

There are many third-party SSL providers that provide these certs like DigiCert, comodo, etc.

Companies deploying exchange for production avail these certificate from the trusted CA.

However, in the case of training and small-medium business.

Sometimes, it’s a challenge to install a valid SSL to test with all exchange features.

For example Autodiscover connectivity and hybrid migration to office 365.

Let’s Encrypt provides the free SSL service, that can be installed on an Exchange server to make the testing successful.

 

Generate Free SSL Certificate With Let’s Encrypt

With the help of Let’s encrypt win acme.

You can install the SSL Certificate to your exchange server.

Though, let’s encrypt provides SSL Certificate for multiple platforms and services.

But here we will only focus on installing SSL on exchange server 2016.

 

Steps To Generate Free SSL Certificate

You need to download the Win acme from win-acme.com/

free ssl certificate

Once you download it.

Create a folder by the name of Tools inside C drive.

Extract the files to this “Tools” folder.

ssl certificate win acme

Now open the command prompt with administrator privileges

Navigate to the tools directory, where the wacs.exe is located.

Once you are in the tools directory.

Now run the following command and hit enter.

Make sure to change the name of your domain and service like Owa and Autodiscover.

wacs.exe –target manual –host getsupportlink.com,mail.getsupportlink.com,autodiscover.getsupportlink.com –certificatestore My –acl-fullcontrol “network service,administrators” –installation iis,script –installationsiteid 1 –script “./Scripts/ImportExchange.ps1” –scriptparameters “‘{CertThumbprint}’ ‘IIS,SMTP,IMAP’ 1 ‘{CacheFile}’ ‘{CachePassword}’ ‘{CertFriendlyName}'”

ssl certificate free

In this case, the domain name is getsupportlink.com

So, the main certificate will be issued to the host getsupportlink.com

Therefore, it also includes two other subject alternative names

mail.getsupportlink.com & autodiscover.getsupportlink.com

If the above command executes successfully.

The free SSL Certificate will be installed on your exchange server.

Therefore, it will also assign the certificate to the service IMAP, IIS & SMTP

 

Check Your Certificate Installation

To make sure that, installation of the SSL certificate to an Exchange server is successful.

You can visit the site digicert.com/help/

Put your domain name and click on the check server.

You will get the final result as below if the installation is successful.

Here, you can verify the common name and subject alternative name as well as.

let's encrypt tls certificate

Furthermore, if you need more clearance on the topic.

You can watch the following video to install free SSL on your exchange via let’s encrypt.

 

Few of more query was resolved by let’s encrypt such as

 

Do Let’s Encrypt supports free SSL for Certificate for IIS?

Yes, you can install let’s encrypt certificates for IIS Website as well.

 

Is Let’s Encrypt certificate is completely free?

Yes, there is no charge for this certificate.

However, it renews certs automatically within the time period of 3 months.

 

Are Free SSL Certificates safe?

Yes, as they are providing the encryption communication between two devices.

They are safe, it is good to have even a free SSL cert, instead of using no certificate.

However, it validates the domain and may restrict it for the time period.

For example: comodo offers the trial certificate for 30 days only

Though, it does not include the subjective alternative name on cert.

If you talk about let’s encrypt, they provide you cert for only 90 days, and then you have to again renew it.

They do not offer free SSL for complete one year.

 

Conclusion

If you can purchase the valid third party certificate that is best.

Having a free SSL certificate for your servers is better than no security.

So, you can install the free SSL Certs for testing and training purposes.

Moreover, in many cases, they are also used in small-medium businesses as well.

 

Exchange Mailbox Recovery | 4 Simple Step To Restore Mailbox

Show More

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Back to top button

Adblock Detected

Please dissable adblock, to view the content of website.