OWA Certificate troubles

Hi,

Here I go for SSL Certificate question nr 500...*sigh* :

-I've purchased a 3rd party UCC certificate.
-After some trouble I managed to install it on our HUB Exchange 2007 server called MAILSERV (the messaging server of our Essential Business 2008 Server). I enable IMAP POP SMTP WEB. All is well.
-I did NOT install it on the EDGE Exchange 2007 server called SECSERV (the security/forefront server of our Essentials Business 2008 Server and the gateway of our company)

When external users connect to OWA (mail.domain.com) they still receive the annoying certificate warning. When I use IE and check the certificate it still mentions a self-signed certificate instead of the commercial one.
To complicate things this self-signed certificate was installed previously on both MAILSERV & SECSERV. Because of that I don't even know what server is hosting the certificate seen in OWA (the HUB or the EDGE server ?).

So what I want to achieve is getting the 3rd party cert as the OWA certificate once and for all, instead of the self-signed certificate.





LVL 3
vindenAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

BikkelbinkCommented:
I can't tell you where you OWA is hosted. It is called the CAS server (most likely also on your HUB server).
When you figured out which server it is (see your Exchange console), open the IIS manager on that server. You have to change the certificate on the website used there.
After doing that, restart your IIS services (Start -> Run -> iisreset) and all should work fine...
0
vindenAuthor Commented:
Thanks Bikkelbink but apparently the certificate was already available in IIS on the messaging server.

This is what fixed the problem :

The messaging server of EBS 2008 is indeed the CAS server. On that server I had to open IIS and export the certificate. On the Security/forefront server I had to import the certificate in certificates mmc in the "personal" folder. After that I had to open forefront TMG and go to properties for the OWA Web listener. There's a tab called certificates. On that tab I simply had to change the certificate from the old one to the new one by selecting it.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.