The Client Access server role has been installed and at least one certificate is installed on your Client Access server.

• Use the EMC to assign services to a certificate
  
  
• Use the Shell to assign services to a certificate
  
  

You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Client Access server security settings" entry in the Client Access Permissions topic.

1. In the console tree, select Server Configuration.
   
   
2. In the action pane, click Assign Services to Certificate to open the Assign Services to Certificate wizard.
   
   
   • This wizard helps you assign the appropriate services to your certificate for your Exchange organization. For assistance creating a certificate, see Create a New Exchange Certificate.
     
     
3. On the Assign Services page, use the check boxes in the Assign Services section to choose the services you want to assign to your certificate. If you chose services during certificate creation, these services will already be checked. Click Assign.
   
   
4. On the Completion page, verify that all of the services were assigned properly.
   
   
   • If you attempt to assign the Unified Messaging service to the certificate and the certificate is running in TCP mode only, assignment will fail. In order to use a certificate for Unified Messaging, it must be set to run in TLS mode or Dual mode. For more information see Create a Certificate for Enabling Mutual TLS in Unified Messaging.
     
     

You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Client Access server security settings" entry in the Client Access Permissions topic.

This example assigns the IMAP, POP, IIS, and SMTP services to the certificate.

	Copy Code
Enable-ExchangeCertificate -Server 'EXCH-H-868' -Services 'IMAP, POP, IIS, SMTP' -Thumbprint 'EDF57B5F9D81F1EC329BFB77ADD4465B426A40FB'