Solved

SBS 2003 R2 RWW OWA SSL Certificate Problem

Posted on 2008-10-24
5
1,352 Views
Last Modified: 2012-05-05
If I install legitimate certificates from Comodo or Equifax or even a self-signed certificate using the Configure Email and Internet Connection Wizard ( CEICW ) the error exists. It trusts nothing! I have been issued two different basic FREE certificates from InstantSSL and RapidSSL & neither of them or the self-signed one are trusted by the server.
0
Comment
Question by:dsasc
  • 3
  • 2
5 Comments
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800892
Look in the Trusted Root Certification Authorities store on your server. That list is all the Certification Authorities that your server will trust. Do you see the companies that issued you those certificates in the list?
0
 

Author Comment

by:dsasc
ID: 22800911
Yes.
0
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800926
Did you get a individual certificate or a certificate chain (p7b) file from the issuer?
0
 

Author Comment

by:dsasc
ID: 22801009
How about we keep this really simple. Limit conversation to the self-signed certificate. In this case, the Small Business Server is the Certification Authority and it creates a self-signed certificate that is trusted by itself.

When the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is indeed trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This certificate is ok"

In the problem environment, when the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is not trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store."

The statement in the Certificate status section is false.
0
 

Accepted Solution

by:
dsasc earned 0 total points
ID: 22927966
Eventually... after several days and countless support hours they "allowed" escalation to someone who repaired and validated the repair in 3 minutes. OMG! Microsoft support fixed this one by running certutil.exe -repairstore with specifics related to the certificate.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question