Problems installing (and using) U.C.C. (SAN) certificate with Exchange 2007

I am having a problem using a newly-purchased Godaddy UCC Certificate.  I went through the normal process of generating the request, etc...

Long story short: I have imported the certificate onto the server and added it to Exchange (with SMTP,POP,IIS,IMAP for the installed services.)  It asked me if I wanted to overwrite the previous certificate and I chose "y" for "Yes" (duh) however the old certificate which is also disabled for all services is still showing up as the current cert when I try to test the certificate.

Yes, I have restarted IIS and Exchange.  (Did not help)

It looks like (below) that two certs are configured for the same services (the Godaddy one and the self-generated one)

The FIRST certificate listed below (E89F...) is the Godaddy cert that I want to use.

[PS] C:\Windows\System32>get-exchangecertificate

Thumbprint                                Services   Subject
----------                                --------   -------
E89F38CA7D91CCC78C214A951AFF3624FC688E91  IP.WS      CN=remote.domain.com, O...
16D96EF84F27808E705D0BFA36BF726FD5C9CA02  .....      C=US, S=Georgia, L=Some..
B99A2C38F46F2004A89E2604E212FA8BC588D795  .....      C=US, S=Georgia, L=Some...
5D39D4E7CC21EF829D7603351225046B2AE2A9F6  .....      C=US, S=Georgia, L=Some...
24AB1CC7FA72DD8F81214BB8F0C53FF5979EAA98  .....      C=US, S=Georgia, L=Some...
72AE3C32E55F7A6157E104708C2EDC7995E7C86F  IP.WS      CN=remote.domain.com
94E1CFF5D654959310E8B4B8BA49FD6D05BBB61D  .....      CN=WMSvc-WIN-OQ0B0X3O644
53FB184CADA06C373AFCC8041AE6F3F63BD4F494  ....S      CN=ACCO-SS.domain.local
9E062B36717F306766F9607E276459D0470416FE  ....S      CN=Sites
24A4DCF4EDAB19546AEFDBC6D5A0F070E17981F5  .....      CN=acco-ACCO-SS-CA

I've also tried using www.testexchangeconnectivity.com to no avail.

I am not sure what I'm missing here.

At this point, I would make this question 500k points if I could :~)
PC-GearAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
R--RConnect With a Mentor Commented:
Check in the IIS if you have bind the imported certificate. If not then bind it.
0
 
Shreedhar EtteCommented:
Hi,

Refer this article:
http://help.godaddy.com/article/4877

Hope this helps,
Shree
0
 
beechy_Commented:
enable-exchangecertificate -thumbprint "thumbprint of old cert you want to remove" -services none
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
DanMarCommented:
Hi PcGear,
I have followed this wizard with full instructions and never had an issue:
https://www.digicert.com/easy-csr/exchange2007.htm
Full Shell commands listed etc. Let us know how you go?
0
 
PC-GearAuthor Commented:
Ahhh.  It was still bound to the other one in IIS.  I had only removed the services for the certificate.  
0
 
PC-GearAuthor Commented:
Thanks R--R.

And thanks for all of the quick reponses.

Now the only other problem I'm having is regarding RPC:

This excerpt is from: www.testexchangeconnectivity.com:

Attempting to Ping RPC Proxy remote.domain.com
  RPC Proxy can't be pinged.
   Additional Details
  A Web Exception occurred because an HTTP 401 - Unauthorized response was received from Unknown

I guess I'll post this again in the proper forum.




0
All Courses

From novice to tech pro — start learning today.