Solved

I keep getting a certificate error when accessing server 2008 TS locally

Posted on 2009-04-13
10
525 Views
Last Modified: 2012-05-06
I just installed server 2008 to test in our environment.  When I go to https:\\server2008\ts, I get a certificate error there is a problem with this sites security certificate.  I just click continue.  Everything works until I try to run a remote program then I get the certificate mismatch name error.  I added the cert opn the server 2008, but it seems like the name is wrong.  Any ideas?
certerror.bmp
0
Comment
Question by:TriCountyIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
10 Comments
 
LVL 7

Accepted Solution

by:
60MXG earned 250 total points
ID: 24131989
You might want to type in the whole link like https://Server08.tricountyhospital.org

0
 

Author Comment

by:TriCountyIT
ID: 24132015
Doing it that way I was able to browse to the site with out getting the certificate error, but it still errors out when I try to connect to a remote app.
0
 
LVL 7

Expert Comment

by:60MXG
ID: 24132025
What is the error on remote app?  Maybe you need to set your default url or default path in remote app??  Just a thought!
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:TriCountyIT
ID: 24132421
the error is the screen shot.  It says there is a name mismatch on the cert.  Since that is happening it wont connect.
0
 
LVL 7

Expert Comment

by:60MXG
ID: 24132496
Try to go to your browser and delete all those certificates cached and re-enter the site again!
0
 

Author Comment

by:TriCountyIT
ID: 24132611
The problem is my self signed certificate says server08.tricountyhospital.org.  I am able to access remote programs when I go into the remote connection settings and change it to server08.tricountyhospital.org.  is there any way to change that to just server08 so i dont have to go the the FQDN all the time?
0
 
LVL 58

Assisted Solution

by:tigermatt
tigermatt earned 250 total points
ID: 24132702

The problem you are seeing is two-fold. The first issue is the FQDN on the certificate; if this does not match, the system you are connecting from will deem the connection unsafe and throw an error. The second issue is your certificate is a self-signed certificate, meaning most machines will automatically distrust it, once again deeming the connection insecure.

Your best option would be to purchase and install an SSL certificate from a trusted certification authority. This will eliminate both issues. You could use a SAN (Subject Alternate Name) certificate if you wished to address your server by more than one name, such as its FQDN and its NetBIOS (server08) name. Use https://domainsforexchange.net/ for cheap SAN SSL certificates; although it states it's for Exchange Servers, their certificates work equally as well for any other application requiring a certificate.

-Matt
0
 

Author Comment

by:TriCountyIT
ID: 24132970
ya I figured that.  I was able to get it to work for testing purposes for now.  if we stick with the software we will purchase teh cert.  Thanks
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 24133001

You would need to re-generate the SSL certificate internally (meaning you will need a Certification Authority installed) in order to eliminate the error at this stage. If it is purely a test environment, I'd suggest you simply ignore the error for now.

-Matt
0
 

Author Comment

by:TriCountyIT
ID: 24133032
thanks for your help
0

Featured Post

Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question