Import and manage certificates for retrieving email from an Exchange server via https
Last adaptation to the version: 1.23
New:
- Note on use for self-signed apps
- Reference to assignment of the certificates to devices
Last updated:
02.2024
notempty
This article refers to a Resellerpreview
Usage
Certificates are required to retrieve emails from an Exchange server using https or to confirm the authenticity of self-signed apps.
In the section Base-64 encoded X.509 certificates can be imported from Exchange servers.
General options
| Field / Button | Description |  | |
|---|---|---|---|
| Filter to display only certain certificates | |||
| Add certificate | This button is used to add a new certificate. See below for more information. | ||
| Show/hide details | If you have a large number of certificates, it may be useful to hide the display of the most important details. | ||
| / List view / grid view | Switch between lists and grid view. | ||
| Aktualisieren | Refreshing the display | ||
|
| |||
Certificate Options | |||
| The button at the top right of each certificate tile provides the following options: |  | ||
| Details | Show certificate details | ||
| Delete | The certificate is deleted. | ||
| Details in the overview: | |||
| Type: | X.509 | ||
| CN: | Certificate name | ||
| DN: | CN=exchange | ||
|
| |||
Show certificate | |||
| Click on a certificate tile to display the corresponding certificate and its information. | |||
| Caption | Value | Description |  |
| Name | cc-reverse | Certificate name | |
| Type | X.509 | mandatory X.509 | |
| CN | cc-reverseproxy | Certificate name | |
| Not Before | Jan. 1st 2020 00:00 | Date from which the certificate is valid | |
| Not After | Dec. 31st 2037 23:59 | Date until the certificate is no longer valid | |
| Common Name | cc-reverseproxy | Defined Common Name of the certificate | |
| Country | DE | The country in which the certificate is valid | |
Add certificate
Export in Exchange Server
These certificates must be exported to the Exchange server first.
- Start certificate management on the Exchange server:
- (mmc console → add snap-in → certificates → computer account)
- Section Certificates → Own certificates → Certificates :
- Right click on the applicable certificate for the Exchange server
(NOT the CA!) context menu: All tasks / Export
- Right click on the applicable certificate for the Exchange server
The certificate export wizard starts. ( Here with Windows Server 2012, german language )
Fig.1
Start the certificate export
Fig.2
Export private key:
◉ No, do not export private key
◉ No, do not export private key
Fig.3
Format of the file to be exported
Select the desired format: Important !
◉ Base-64 encoded X.509 (.CER)
Select the desired format: Important !
◉ Base-64 encoded X.509 (.CER)
Fig.4
File to be exported
Filename: desired file name
(e.g.:
Filename: desired file name
(e.g.:
C:\Users\administrator\Documents\ttt-point.cer)
Fig.5
Finish the wizard
Summary
Summary
Fig.6
Report: The process was successfully completed
Import in MobileSecurity
notempty
The file must not be saved with the Windows program Notepad after opening it!
Line breaks are inserted, which make it impossible to import the certificate. In order to import a certificate into the Mobile Security Portal, click on the Add certificate button.
| Caption | Value | Description |  |
|---|---|---|---|
| Name | Name | Description of the certificate in Mobile Securitynotempty May not contain spaces!
| |
| File | Select .cer-file | ||
| This certificate is added with the Add button. | |||
Assigning a certificate to a device
The certificates are selected under in the Certificates tab.
Further information can be found in the Wiki article Certificates configuration.