We help IT Professionals succeed at work.

0x80072f0d error with activesync

dpickard
dpickard asked
on
2,161 Views
Last Modified: 2013-12-05
I just purchased a basic $20 SSL certificate from godaddy.com. I can use Outlook via RPC over HTTPS and I can connect to OWA via HTTPS but when I try to activesync on my mobile device I get the 0x80072f0d error. From previous reading from other posts for this subject I tried logging into https://mail.plazare.com/oma from my mobile device and was able to login with no security warnings. Any idea what is making it error out? At the moment I am not requiring SSL to be used if that helps.
Comment
Watch Question

Expert of the Year 2007
Expert of the Year 2006
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
I had to disable the Intermediate Certificate they had me install.
This thread helped me a lot with my GoDaddy cert issue I was having.  I called GoDaddy cert support, started to describe my problem, and almost immediately the rep knew exactly what I was calling about.  He doubled-checked by visiting my domain and verified the problem.  He emailed me the following instructions.

Also, as a side note ... I am running IMAP on my Exchange server.  So, after going through these instructions, I also had to go to Exchange System Manager, drill down on my server to the IMAP protocol properties, and update the Certificate on the Access tab to the new GoDaddy cert that was just installed.

HERE'S INSTRUCTIONS DIRECTLY FROM GODADDY ...

The issue you have is caused by either the presence of a GoDaddy root certificate in your trusted root certificate store located on your server, or a mis-installation of the intermediate certificates.

You need to do the following.

Go to Start...then Run, and type in MMC.

Once the MMC Console root is open, hit ctrl + m. This will bring up the Add/Remove Snap-In dialog box.

Select "Add"

In the Add Standalone Snap-in dialog box, choose "Certificates"; then click the "Add" button.

In the Certificates snap-in box it is very important you choose "Computer account," hit "Next," and then "Local computer."

Finish out of the standalone boxes and view the Console Root window. You should now see a Console Root folder, with a Certificates folder under it, and a list of folders under the Certificates icon/folder.

Open the "Trusted Root Certification Authorities" folder and then go to the "Certificates" sub folder and open it.

Seach the alphabetical listing for a GoDaddy Class 2 root certificate.

a) Right click the Go Daddy certificate
b) Select "Properties"
c) Select the radio button for "Disable all purposes for this certificate"
d) Click Ok

Then, in the Console Root window, expand on the Intermediate Certification Authorities folder and open the Certificates folder.

Find any GoDadddy certificates listed there and remove them.

Browse to https://certificates.godaddy.com/Repository.go

Download the following files:

gd_cross_intermediate.crt
gd_intermediate.crt

Then right click on the root or top level folder for the Intermediate Certification Authorities folder, choose All Tasks, and the Import option.

It is imperitive you install these files in the following order.

Browse to the gd_cross_intermediate.crt file and choose it.

Place it in the Intermediate Certification Authorities.

After completing the cross intermediate, do the same process, but this time for the intermediate certificate.

Next go to the "Personal" folder and open the Certificates folder.

If you have any expired or unused certificates in this folder, especially for the same domain you are working on, remove them.

Also, open the IE browser on your server and go to Tools/Internet Options/Content and click on the "Certificates" button and check the Trusted Root folder in it. Search for a GoDaddy Class 2 trusted root. If there is a GoDaddy listed, remove it.

Stop and Start IIS.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.