Assigning Certificates (Command Line)
Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.
There are several ways to assign a certificate. You can assign the certificate at the same time you request it (through the Request action), at the time you import it (through either the ImportResponse action or the ImportPFX option), or at a later time (through the Assign action). If you choose to immediately assign the certificate to a server during a request or import action, you need to set two additional parameters with the appropriate action: /Assign and /Components.
| Parameter | Description |
|---|---|
/Assign |
New in Office Communications Server 2007 R2. Specifies whether the issued certificate should be assigned immediately. This parameter is available only when /online is set to True (the default). |
/Components |
New in Office Communications Server 2007 R2. Specifies the Edge Server to which the certificate should be assigned. This is a comma-separated list, specifying one or more of the following options: AP Access Proxy or Access Edge Server DP Data Proxy or Web Conferencing Edge Server MR Media Relay or A/V Edge Server INTERNAL Edge Server internal interface (default) |
To assign a certificate at the time it's requested, set the /Assign parameter to True, and specify a comma-separated list of servers to which the certificate is to be assigned. Note that the /Online parameter must also be set to True, which is the default for that parameter.
A Request action with immediate assignment might look like this.
LCSCmd.exe /Cert /Action:Request /OU:Marketing /Org:Contoso /sn:eepool1.contoso.com /country:US /city:Redmond /state:Washington /assign:TRUE /Components:AP,MR /ca:contoso.com\contoso-CA
The /Assign and /Components parameters are identical for the ImportResponse and ImportPFX actions.
If you choose to assign a certificate at a later time, use the Assign action. Here is the syntax of the Assign action of the Cert context.
LCSCmd /Cert /Action:Assign /issuer:<the issuer of the certificate> [/subjectName:<subject name of the certificate>] [/serialNumber:<serial number of the certificate>] [/Components:<AP | DP | MR | INTERNAL>] [/L:<log file path>] [/XML:[TRUE|FALSE]]
Here is an example showing a certificate assignment:
LCSCmd /Cert /Action:Assign /issuer:contoso.com /subjectName:Pool01-Certificate /Components:AP,MR
Where:
| Parameter | Description |
|---|---|
/Cert |
Executes the selected certificate task on the current computer. |
/Action |
Takes a string that specifies the action name. Valid action names include Request, CheckStatus, ImportResponse, ImportPFX, ExportPFX, ListCA, and ImportCAChain. |
/issuer |
Specifies the common name of the issuer. |
/subjectName |
Specifies the subject name of the certificate. |
/serialNumber |
Specifies the serial number of the certificate. |
/Components |
New in Office Communications Server 2007 R2. Specifies the Edge Server to which the certificate should be assigned. This is a comma-separated list, specifying one or more of the following options: AP Access Proxy or Access Edge Server DP Data Proxy or Web Conferencing Edge Server MR Media Relay or A/V Edge Server INTERNAL Edge Server internal interface (default) |
/L |
Specifies the log file path. If not specified, %TEMP%\<ActionName>[<Date>][<Time>].html is used. To disable logging, use a dash character (-) as the log file name. |
/XML |
Specifies whether the log file to be generated should be in XML format instead of HTML. |
/? |
Shows Help on usage. |