1. Remote to MOPTHYBRID server and run EMS by admini. as show below.


A computer screen shot of a computer programDescription automatically generated


2. create a CSR by command

New-ExchangeCertificate -PrivateKeyExportable $True -GenerateRequest -FriendlyName "Wildcardcer2025" -SubjectName "c=AU,o=Melbourne and Olympic Park,cn=mail.mopt.vic.gov.au" -DomainName mail.mopt.vic.gov.au

 

3. Complete CSR by the following command, and download a copy of the certificate by refer to the guide  "Request a certicicate from DigiCert"

Import-ExchangeCertificate -FileData ([System.IO.File]::ReadAllBytes('C:\Users\dli_admin\Desktop\Certificate\Wildcardcer2025.cer'))


4. Check certificate status by 

Get-ExchangeCertificate | where {$_.Status -eq "Valid" -and $_.IsSelfSigned -eq $false} | Format-List FriendlyName,Subject,CertificateDomains,Thumbprint


5. Blind certificate by log in to exchange admin center https://mail.mopt.vic.gov.au/ecp, follow the three steps of hte following image and completed the process.

 

A screenshot of a computerDescription automatically generated