Solved

SBS 2003 R2 RWW OWA SSL Certificate Problem

Posted on 2008-10-24
5
1,353 Views
Last Modified: 2012-05-05
If I install legitimate certificates from Comodo or Equifax or even a self-signed certificate using the Configure Email and Internet Connection Wizard ( CEICW ) the error exists. It trusts nothing! I have been issued two different basic FREE certificates from InstantSSL and RapidSSL & neither of them or the self-signed one are trusted by the server.
0
Comment
Question by:dsasc
  • 3
  • 2
5 Comments
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800892
Look in the Trusted Root Certification Authorities store on your server. That list is all the Certification Authorities that your server will trust. Do you see the companies that issued you those certificates in the list?
0
 

Author Comment

by:dsasc
ID: 22800911
Yes.
0
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800926
Did you get a individual certificate or a certificate chain (p7b) file from the issuer?
0
 

Author Comment

by:dsasc
ID: 22801009
How about we keep this really simple. Limit conversation to the self-signed certificate. In this case, the Small Business Server is the Certification Authority and it creates a self-signed certificate that is trusted by itself.

When the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is indeed trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This certificate is ok"

In the problem environment, when the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is not trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store."

The statement in the Certificate status section is false.
0
 

Accepted Solution

by:
dsasc earned 0 total points
ID: 22927966
Eventually... after several days and countless support hours they "allowed" escalation to someone who repaired and validated the repair in 3 minutes. OMG! Microsoft support fixed this one by running certutil.exe -repairstore with specifics related to the certificate.
0

Featured Post

Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I’m often asked about newer and larger USB drives connected to SBS2008 and 2011 failing Windows Server Backup vs the older USB drives not failing. As disk space continues to grow and drive technology change SBS2008 and some SBS2011 end up with the f…
Microservice architecture adoption brings many advantages, but can add intricacy. Selecting the right orchestration tool is most important for business specific needs.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question