Solved

Server's certificate chain has expired or is not yet valid

Posted on 2009-04-06
8
1,310 Views
Last Modified: 2012-05-06
I updated our SSL Cert for our Exchange 2003 server back in January. I believe the current certificate was due to expire yesterday (April 5th, 2009). As of this morning, I am receiving the following message on Entourage clients which have been configured with the option "This LDAP server requires a secure conection(SSL)". I do not encounter certificate errors when I connect to the Exchange server via OWA. I have verified on my exchange server that the current certificate installed for the 'Default Web Site' is valid, it expires on April 5th, 2011. Is there perhaps another location in which I missed updating the cert? Any info would be greatly appreciated. I am attaching a screen cap of the error message which Entourage is producing.
entourage-secure-error.jpg
0
Comment
Question by:sgs521
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
8 Comments
 

Expert Comment

by:adhodgson
ID: 24081096
Hi,

How is this client connecting to the server?  If POP/IMAP, have you made sure the new certificate is installed on those services?

Thanks.
Andrew.
0
 

Author Comment

by:sgs521
ID: 24081134
The client connects as an exchange client, which in my limited understanding of how Entourage actually talks to exchange, I think is over http. There's a configuration option in the account setup that specifies the account is on exchange, then I have to enter both the exchange server and ldap server, which is the same server address. We don't have anyone who is using pop, smtp or imap directly from the email client in our environment.
0
 
LVL 53

Expert Comment

by:strung
ID: 24081306
0
Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

 

Author Comment

by:sgs521
ID: 24081856
Thanks strung, the first link http://www.askdavetaylor.com/install_root_certificate_with_microsoft_entourage.html seemed to fix this. Just really odd that it had been working before this when we'd never installed the cert client side. Going to do more testing across other workstations before I accept as solution, but it looks like that may be the one.
0
 
LVL 53

Expert Comment

by:strung
ID: 24082230
Glad to be of help

0
 

Author Comment

by:sgs521
ID: 24087753
An update, I returned to the office this morning, booted up my laptop, launched Entourage and received the error again. So it looks like perhaps installing the cert client side only temporarily fixed until reboot. I'm thinking there's still something I've missed when updating the secure cert on the exchange server. The only way to repeatedly duplicate the issue is by turning on the "this ldap server requires a secure connection" option under account settings in Entourage. Is there another location that the certificate needs to be installed within Active Directory to secure it's ldap communication?
0
 

Author Comment

by:sgs521
ID: 24087764
Also as an update, on the configuration of the exchange server, this was put in place prior to my arrival, but it was configured with AD and Exchange on the same server.
0
 

Accepted Solution

by:
sgs521 earned 0 total points
ID: 24132512
Corrected this issue by removing and re-adding the certificate, rebooted the server. 5 days now and no further incidents of the ssl error client side.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question