Solved

I keep getting a certificate error when accessing server 2008 TS locally

Posted on 2009-04-13
10
521 Views
Last Modified: 2012-05-06
I just installed server 2008 to test in our environment.  When I go to https:\\server2008\ts, I get a certificate error there is a problem with this sites security certificate.  I just click continue.  Everything works until I try to run a remote program then I get the certificate mismatch name error.  I added the cert opn the server 2008, but it seems like the name is wrong.  Any ideas?
certerror.bmp
0
Comment
Question by:TriCountyIT
  • 5
  • 3
  • 2
10 Comments
 
LVL 7

Accepted Solution

by:
60MXG earned 250 total points
ID: 24131989
You might want to type in the whole link like https://Server08.tricountyhospital.org

0
 

Author Comment

by:TriCountyIT
ID: 24132015
Doing it that way I was able to browse to the site with out getting the certificate error, but it still errors out when I try to connect to a remote app.
0
 
LVL 7

Expert Comment

by:60MXG
ID: 24132025
What is the error on remote app?  Maybe you need to set your default url or default path in remote app??  Just a thought!
0
 

Author Comment

by:TriCountyIT
ID: 24132421
the error is the screen shot.  It says there is a name mismatch on the cert.  Since that is happening it wont connect.
0
 
LVL 7

Expert Comment

by:60MXG
ID: 24132496
Try to go to your browser and delete all those certificates cached and re-enter the site again!
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 

Author Comment

by:TriCountyIT
ID: 24132611
The problem is my self signed certificate says server08.tricountyhospital.org.  I am able to access remote programs when I go into the remote connection settings and change it to server08.tricountyhospital.org.  is there any way to change that to just server08 so i dont have to go the the FQDN all the time?
0
 
LVL 58

Assisted Solution

by:tigermatt
tigermatt earned 250 total points
ID: 24132702

The problem you are seeing is two-fold. The first issue is the FQDN on the certificate; if this does not match, the system you are connecting from will deem the connection unsafe and throw an error. The second issue is your certificate is a self-signed certificate, meaning most machines will automatically distrust it, once again deeming the connection insecure.

Your best option would be to purchase and install an SSL certificate from a trusted certification authority. This will eliminate both issues. You could use a SAN (Subject Alternate Name) certificate if you wished to address your server by more than one name, such as its FQDN and its NetBIOS (server08) name. Use https://domainsforexchange.net/ for cheap SAN SSL certificates; although it states it's for Exchange Servers, their certificates work equally as well for any other application requiring a certificate.

-Matt
0
 

Author Comment

by:TriCountyIT
ID: 24132970
ya I figured that.  I was able to get it to work for testing purposes for now.  if we stick with the software we will purchase teh cert.  Thanks
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 24133001

You would need to re-generate the SSL certificate internally (meaning you will need a Certification Authority installed) in order to eliminate the error at this stage. If it is purely a test environment, I'd suggest you simply ignore the error for now.

-Matt
0
 

Author Comment

by:TriCountyIT
ID: 24133032
thanks for your help
0

Featured Post

Too many email signature changes to deal with?

Are you constantly being asked to update your organization's email signatures? Do they take up too much of your time? Wouldn't you love to be able to manage all signatures from one central location, easily design them and deploy them quickly to users. Well, you can!

Join & Write a Comment

Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now