Solved

SBS 2003 R2 RWW OWA SSL Certificate Problem

Posted on 2008-10-24
5
1,349 Views
Last Modified: 2012-05-05
If I install legitimate certificates from Comodo or Equifax or even a self-signed certificate using the Configure Email and Internet Connection Wizard ( CEICW ) the error exists. It trusts nothing! I have been issued two different basic FREE certificates from InstantSSL and RapidSSL & neither of them or the self-signed one are trusted by the server.
0
Comment
Question by:dsasc
  • 3
  • 2
5 Comments
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800892
Look in the Trusted Root Certification Authorities store on your server. That list is all the Certification Authorities that your server will trust. Do you see the companies that issued you those certificates in the list?
0
 

Author Comment

by:dsasc
ID: 22800911
Yes.
0
 
LVL 14

Expert Comment

by:dfxdeimos
ID: 22800926
Did you get a individual certificate or a certificate chain (p7b) file from the issuer?
0
 

Author Comment

by:dsasc
ID: 22801009
How about we keep this really simple. Limit conversation to the self-signed certificate. In this case, the Small Business Server is the Certification Authority and it creates a self-signed certificate that is trusted by itself.

When the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is indeed trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This certificate is ok"

In the problem environment, when the Small Business Server creates a self-signed certificate, you can access the site locally (on the server) using; https://SERVERNAME/SITENAME and the certificate is not trusted. When viewed, the Certification Path shows servername.domain.com as the root path and the Certificate status section shows "This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store."

The statement in the Certificate status section is false.
0
 

Accepted Solution

by:
dsasc earned 0 total points
ID: 22927966
Eventually... after several days and countless support hours they "allowed" escalation to someone who repaired and validated the repair in 3 minutes. OMG! Microsoft support fixed this one by running certutil.exe -repairstore with specifics related to the certificate.
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
I work for a company that primarily works with small businesses as their outsourced IT vendor. As such the majority of these customers utilize some version of Small Business Server. Due to the economics of running a small business, many of these cus…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now