IMAP/POP3 Certificate issues

Posted on 2007-10-18
Last Modified: 2013-11-29
I have a single Exchange 2007 server that was upgraded from an Exchange 5.5 organization. This is new hardware and a new install. The issue I am having is with certificates and pop3/imap/smtp.

We purchased a 3rd party certificate called I have installed the certificate for use with IIS for Outlook Web Access. I am trying to tie the same certificate to POP3, IMAP, and SMTP services. I have set the ssl bindings for IMAP and POP3 using the information here :

i have enabled the certificate for use with IMAP and POP3. I am unable to get secure or unsecure connection via pop or imap. I am using ports 995 for pop and 993 for imap. When I try to telnet to those ports I get -ERR Connection is closed. 13 & * BYE Connection is closed. 14.

i am at a loss. Anyone know how I can make this work?
Question by:bacchus1106
    LVL 104

    Accepted Solution

    Get your hands on PowerGui from
    There is a certificate module in there for Exchange 2007 that makes installing the certificate much easier.

    On the protocol itself, have you tried simply turning off the secure option to see if you can get them to work on the default ports (110/143) ?


    If your question has been answered, please remember to accept the answer and close the question.

    Author Comment

    Great Tool! It certainly helped me take a look at the setup of the server. thanks for the link. However I think the link is

    Anyway, that didn't solve my problem. Apparently I had deleted the mail.domain.local self sign certificate and that caused the imap and pop services to stop working on ssl. thanks for the insight. I am going to post another question about the specific setup for using certificates. Thanks!
    LVL 104

    Expert Comment

    I have abaused my page admin rights to correct the URL for anyone who looks at this question in the future.

    Exchange Server Zone Advisor.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Granting full access permission allows users to access mailboxes present in their database. By giving full access permission one can open and read the content of any mailbox but cannot send emails from that mailbox.
    If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
    The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    10 Experts available now in Live!

    Get 1:1 Help Now