EZ exchange 2007 cert for SBS

First make sure web enrollment role is installed. It will require a reboot if it is not. Navigate to https://localhost/certsrv and click past the warning, if you get the funky this site doesn't exist message you need to open IIS and stop the SBS Web Applications site and restart the default site. That should allow the site to open. From there we need to create the new cert request in powershell. The easiest way is to go to: https://www.digicert.com/easy-csr/exchange2007.htm and enter your cert information. The common name is mail or remote and your domain name. Other names should be autodiscover.domain.com, autodiscover.internaldomain, servername.interndomain. Enter those into the neat boxes and copy the newly created script. Paste the script into exchange powershell, from there it will kick out the request to the c: drive. Open the request in notepad, and open the cert enrollment webpage. Your going to submit an advanced request, in the second screen select the second option, this is the base 64-bit request. Once you do the request make sure you select web server as the cert type. You will then download the cert. Back in powershell run: Import-ExchangeCertificate -Path c:\cert.cer or whatever you saved the file as. It will kick out the thumbprint, you will need that in the next step. Run: Enable-ExchangeCertificate -Services "SMTP,POP,IMAP,IIS" It will ask for the thumbprint, copy and paste this. Select A for all and your done!