Solved

SBS 2008 certificate error on LAN afetr installing godaddy certificate on server

Posted on 2009-04-01
7
523 Views
Last Modified: 2012-05-06
Hi,
We have just installed a Microsoft Small Business Server 2008 at a clients site.
All was fine, until we swapped the remote access to htps://
We are using a godaddy ssl - which works perfectly from outside the LAN.
But now every user internally gets a certificate error when they access OWA, Sharepoint etc.
The certificate on the server does now point to companyname.secure.net and I am guessing internally it doesn't see this path??
I have no experience in this server, could an expert please help!!

Many thanks,

Mike
0
Comment
Question by:ics45
  • 4
  • 2
7 Comments
 
LVL 21

Accepted Solution

by:
suppsaws earned 500 total points
ID: 24038547
Hello ics45,

that is because internally you should use split dns.
SBS is configured with split dns, do you could use the DEFAULT url.
Since you are using a different url, you can create a split dns on your SBS server for that new url.
here is a tutorial for that:
http://www.amset.info/netadmin/split-dns.asp

btw, did you install the cert like this?:
http://sbs.seandaniel.com/2009/02/installing-godaddy-standard-ssl.html

Regards,

suppsaws
0
 
LVL 21

Expert Comment

by:suppsaws
ID: 24038597
ics45,

btw,
Start > SBS Native Tools Management [Enter] > DNS > Forward Lookup Zones.
there you can see the default split dns vanues.

suppsaws
0
 

Author Comment

by:ics45
ID: 24038743
Hi Suppsaws,

many thanks for the very fast reply.
I did install the cert as your second link (Actually using the very same link!!).
I will check the first (split DNS) straight away and reply ASAP.
Once again many thanks for the reply,

Kindest regards,

Mike
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:ics45
ID: 24038861
Hi Suppsaws,

Just to clarify the link..

I want to add a local resource that is available on the internet??

So When I go to DNS manager I have 3 zones on the server;
_msdcs.domain.local
domain.local
remote.domain.co.uk

Should I be adding www.internal IP address to my domain.local zone??

Many thanks,

Mike
0
 

Author Comment

by:ics45
ID: 24039025
Hi,

Now I have looked further do I actually need to create the companyname.secure.net listing in my domain.local zone??

Mike
0
 

Author Comment

by:ics45
ID: 24057820
Hi,

this is now working, split DNS was the answer, but not really as described in the link.

I am happy to split the points,

Many thanks,

Mike
0

Featured Post

Scale it in WD Gold

With up to ten times the workload capacity of desktop drives, WD Gold hard drives employ advanced technology to deliver among the best in reliability, capacity, power efficiency and performance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
A safe way to clean winsxs folder from your windows server 2008 R2 editions
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now