Solved

SBS 2008 certificate error on LAN afetr installing godaddy certificate on server

Posted on 2009-04-01
7
530 Views
Last Modified: 2012-05-06
Hi,
We have just installed a Microsoft Small Business Server 2008 at a clients site.
All was fine, until we swapped the remote access to htps://
We are using a godaddy ssl - which works perfectly from outside the LAN.
But now every user internally gets a certificate error when they access OWA, Sharepoint etc.
The certificate on the server does now point to companyname.secure.net and I am guessing internally it doesn't see this path??
I have no experience in this server, could an expert please help!!

Many thanks,

Mike
0
Comment
Question by:ics45
  • 4
  • 2
7 Comments
 
LVL 21

Accepted Solution

by:
suppsaws earned 500 total points
ID: 24038547
Hello ics45,

that is because internally you should use split dns.
SBS is configured with split dns, do you could use the DEFAULT url.
Since you are using a different url, you can create a split dns on your SBS server for that new url.
here is a tutorial for that:
http://www.amset.info/netadmin/split-dns.asp

btw, did you install the cert like this?:
http://sbs.seandaniel.com/2009/02/installing-godaddy-standard-ssl.html

Regards,

suppsaws
0
 
LVL 21

Expert Comment

by:suppsaws
ID: 24038597
ics45,

btw,
Start > SBS Native Tools Management [Enter] > DNS > Forward Lookup Zones.
there you can see the default split dns vanues.

suppsaws
0
 

Author Comment

by:ics45
ID: 24038743
Hi Suppsaws,

many thanks for the very fast reply.
I did install the cert as your second link (Actually using the very same link!!).
I will check the first (split DNS) straight away and reply ASAP.
Once again many thanks for the reply,

Kindest regards,

Mike
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:ics45
ID: 24038861
Hi Suppsaws,

Just to clarify the link..

I want to add a local resource that is available on the internet??

So When I go to DNS manager I have 3 zones on the server;
_msdcs.domain.local
domain.local
remote.domain.co.uk

Should I be adding www.internal IP address to my domain.local zone??

Many thanks,

Mike
0
 

Author Comment

by:ics45
ID: 24039025
Hi,

Now I have looked further do I actually need to create the companyname.secure.net listing in my domain.local zone??

Mike
0
 

Author Comment

by:ics45
ID: 24057820
Hi,

this is now working, split DNS was the answer, but not really as described in the link.

I am happy to split the points,

Many thanks,

Mike
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question