You need to have a cert with an associated private key in order for SSL to work. We’ve run into this issue many times for certs we’ve generated ourselves.
Below is an example of how to make the .pfx file with openssl (on linux assuming you have the key and crt files).
/usr/local/ssl/bin/openssl pkcs12 -export -in /tmp/your_certificiate_file.crt
-inkey /tmp/your_private_key.key -out /tmp/your_file_that_can_be_imported.com.pfx
Then just use security certificates MMC for local machine (on the owa server) to import the key into the local machine personal folder.
if you have the cert and no key file, you can generate the key like this:
/usr/local/ssl/bin/openssl genrsa 1024 > /tmp/newly_generated_key.key
and plug that in to the key section of the .pfx command line above.