How to Import and Export your SSL Certificate in Exchange 2007
Exporting/Backing Up to a .pfx File
On the Start menu click Run and then type mmc.
Click File > Add/Remove Snap-in.
Click Certificates > Add and then close the Add Standalone Snap-in window. Click OK.
Select Computer Account and then click Next. Select Local Computer and then click Finish. Then close the add standalone snap-in window and the add/remove snap-in window.
Click the + to expand the certificates (local computer) console tree and look for the personal directory/folder. Expand the certificates folder.
Right-click on the certificate you want to backup and select ALL TASKS > Export.
Follow the wizard to export your primary certificate to a .pfx file. Choose Yes, export the private key.
Choose to include all certificates in certificate path if possible. Warning: Do not select the delete private key option.
Leave the default settings and enter your password if required. Choose the location to save the file and click Finish. You will receive an export successful message. The .pfx file is now saved in the location you selected.
Importing from a .pfx File
On the Start menu click Run and then type mmc.
Click File > Add/Remove Snap-in.
Click Certificates > Add and then close the Add Standalone Snap-in window. Click OK.
Select Computer Account and then click Next. Select Local Computer and then click Finish. Then close the Add Standalone Snap-in window and the Add/Remove Snap-in window.
Click the + to expand the certificates (local computer) console tree and look for the personal directory/folder. Expand the certificates folder.
Right-click on the Personal Certificates Store folder and select ALL TASKS > Import.
Follow the certificate import wizard to import your primary certificate from a .pfx file. When prompted, choose to automatically place the certificates in the certificate stores based on the type of the certificate.
Enabling a New Certificate on a Server
Run the following Get-ExchangeCertificate command to get your certificate thumbprint. Replace "your.domain.name" with your domain.
Run the following Enable-ExchangeCertificate command to enable your certificate for use with Exchange. Replace the text in red to match your thumbprint.