Export a certificate

If you have an existing certificate in your certificate store that you want to use with MetaDefender Email Gateway Security to enable incoming TLS it will first have to be exported into a .pfx file. Follow the instructions below to export the certificate.

  1. Run Microsoft Management Console (mmc.exe).

  2. Add the Certificates Snap-In:

    1. Select File > Add/Remove Snap in...

    2. Select 'Certificates' and click 'Add >'.

    3. Select the account for whom the certificate is installed (usually this is 'Computer account'), then click 'Next >'.

    4. Select 'Local Computer' if the certificate is installed this computer, then click 'Finish'.

    5. Click 'OK' to close the 'Add or Remove Snap-ins' dialog.

      images/download/attachments/331060/image2017-1-26_9-48-14.png

    6. Navigate to the certificate you wish to export, then right-click and select 'All Tasks > Export...'.

    7. Click 'Next >' in the 'Certificate Export Wizard' welcome step.

      images/download/attachments/331060/image2017-1-26_9-49-3.png

    8. Select 'Yes, export the private key' and click 'Next >'.

      images/download/attachments/331060/image2017-1-26_9-54-17.png
      Note: The certificate must include the private key, so If this option is unavailable the certificate cannot be used with MetaDefender Email Gateway Security.

    9. Select 'Personal Information Exchange - PKCS #12 (.PFX) and click 'Next >'.

      images/download/attachments/331060/image2017-1-26_9-54-41.png

    10. Specify a certificate password and click 'Next >'.

      images/download/attachments/331060/image2017-1-26_9-55-29.png

    11. Specify a file name for the exported certificate and click 'Next >'.

      images/download/attachments/331060/image2017-1-26_9-57-43.png

    12. Click 'Finish' to complete the export.

      images/download/attachments/331060/image2017-1-26_9-58-29.png

    13. A dialog will display that export was successful.

      images/download/thumbnails/331060/image2017-1-26_9-58-48.png

Once the export is complete, refer to 3.2.1 Inbound TLS support for instructions how to install the certificate in MetaDefender Email Gateway Security.