[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

SSL certificate server name is incorrect - Q324345 did not help

Posted on 2006-05-24
6
Medium Priority
?
3,045 Views
Last Modified: 2012-05-05
Here's our environment:
Exchange 2003 on Windows Server 2003
Outlook clients connect via RPC over HTTPS - no problems
OWA enabled - no problems
server's internal name = exchange.bapsg.local
server's external hostname = sg.bbdoasia.com

Problem:
When trying to create our first Public Folder, in ESM, after clicking on Folders > Public Folders, we get this error and can't continue:

The SSL certificate server name is incorrect.
ID no: c103b404
Exchange System Manager

In Event Viewer > System, this error is logged:

Event ID: 36884
Source: Schannel
Type: Error
Description:
The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is EXCHANGE.bapsg.local. The SSL connection request has failed. The attached data contains the server certificate.

Q324345 had been reported as the solution in at least 1 other similar question on EE but the instructions for resolution did not help.
http://support.microsoft.com/?id=324345

Specifically, in the Exadmin virtual root in IIS, for Directory Security > Secure Communications, "Require secure channel (SSL) check box" was already cleared. Several times I also tried ticking that option, closing, reopening, and then clearing it again but that did not help.

I also understand that in order for RPC over HTTPS to work (which currently does work well), the name in the certificate must match my server's external Internet hostname, sg.bbdoasia.com, which it does now. When I view the certificate under Directory Security > Secure Communications, it states this:

Issued to: sg.bbdoasia.com
Issued by: BAP SG ROOT CA
Certificate status: This certificate is OK.

So there is apparently a conflict in what RPC over HTTPS expects as the server name in the certificate and what ESM espects when creating any Public Folder.

I also tried enabling and disabling SSL on the Esadmin virtual directory (3 or 4 times) and rebooting and that did not help either.

Any solutions?

Thanks in advance for any feedback.

Thanks,
Derek
0
Comment
Question by:derektom-hk
  • 3
4 Comments
 

Author Comment

by:derektom-hk
ID: 16758692
Ah, I found the answer that wroked here:

http://www.experts-exchange.com/Networking/Email_Groupware/Exchange_Server/Q_21601596.html?query=SSL+certificate+server+name&clearTAFilter=true

Sorry, I just became a member today and this was my first question...

Can I just close this question or should I just delete it? I figure the description might be helpful for others...

Thanks,
Derek
0
 

Author Comment

by:derektom-hk
ID: 16781508
Much thanks for your reply, Simon. Will keep that in mind.

Cheers,
Derek
0
 

Accepted Solution

by:
EE_AutoDeleter earned 0 total points
ID: 16925024
derektom-hk,
Because you have presented a solution to your own problem which may be helpful to future searches, this question is now PAQed and your points have been refunded.

EE_AutoDeleter
0
 

Author Comment

by:derektom-hk
ID: 16931510
EE_AutoDeleter,

Sounds good. Much thanks.

Cheers,
Derek
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With so many activities to perform, Exchange administrators are always busy in organizations. If everything, including Exchange Servers, Outlook clients, and Office 365 accounts work without any issues, they can sit and relax. But unfortunately, it…
In this post, I will showcase the steps for how to create groups in Office 365. Office 365 groups allow for ease of flexibility and collaboration between staff members.
This video discusses moving either the default database or any database to a new volume.
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question