Menshen
asked on
Publish OWA 2007 on ISA 2006 (Certificate error)
Hi,
I'm trying to publish OWA 2007 with ISA 2006, and I'm getting a problem with the certificates. OWA works fine internally, and when I try to access it through ISA I'm able to authenticate, but after that step I get the following error message:
Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)
I followed the instructions in this site to publish OWA,
http://www.isaserver.org/tutorials/Publishing-Exchange-2007-OWA-Exchange-ActiveSync-RPCHTTP-using-2006-ISA-Firewall-Part3.html
but I imagine I failed exactly where the site fails to develop, in the CA authority configuration. I installed one CA authority on my DC and Ive been able since then to issue and request certificates.
But for some reason this is failing. Since I'm not very familiar with this area maybe you might help me.
I'm trying to publish OWA 2007 with ISA 2006, and I'm getting a problem with the certificates. OWA works fine internally, and when I try to access it through ISA I'm able to authenticate, but after that step I get the following error message:
Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)
I followed the instructions in this site to publish OWA,
http://www.isaserver.org/tutorials/Publishing-Exchange-2007-OWA-Exchange-ActiveSync-RPCHTTP-using-2006-ISA-Firewall-Part3.html
but I imagine I failed exactly where the site fails to develop, in the CA authority configuration. I installed one CA authority on my DC and Ive been able since then to issue and request certificates.
But for some reason this is failing. Since I'm not very familiar with this area maybe you might help me.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Follow the steps outlined here on each machine. The link in my first post.
ASKER
hummm ... I don't see how that is different from using my own CA to publish a certificate, I would still have to import my Certificate like that one and at least I trust my own certificate.
ASKER