Solved

issue a wildcard certificate using Microsoft CA

Posted on 2010-09-08
3
2,498 Views
Last Modified: 2012-05-10
I am trying to use Windows Certificate Authority to complete a wildcard certificate request I generated using exchange 2010.  Exchange and the CA services are both installed on the same server, Server 2008 64 bit.  I've tried doing it through IIS 7 as well as through the certificate authority (administrative tools).

I always get an error ASN1 Bad Tag Value met when i try to complete the request.  I've read other articles that say to ignore this error and the certificate will still complete, however with exchange 2010 and server 2008 this doesn't seem to be the case.  I can't find a completed request on my server and the console in CA doesn't show any certificates under issued/failed/pending, etc.

I am trying to use this article

http://exchangeshell.wordpress.com/2009/09/20/create-ucc-san-private-ca-issued-certificate-to-replace-self-signed-certificate-exchange-2007/

I am going to go through it right from the start, but i think it is still going to give me that same error.
0
Comment
Question by:DaveHFry
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 

Accepted Solution

by:
DaveHFry earned 0 total points
ID: 33630985
I was able to complete my certificate request using an IE interface on a different computer in my network.  I used the web interface to create a .cer file and then loaded it back into my server.

This video was a huge help:

http://www.msexchange.org/articles_tutorials/videos/exchange-server-2010/video-certificate-wizard-Exchange-2010.html

Now when I run the Exchange connectivity test, it says:

"The certificate chain couldn't be built. You may be missing required intermediate certificates."

I am working on this right now
0
 
LVL 37

Expert Comment

by:Jian An Lim
ID: 33634253
I have done this via http://lor-sinclair.spaces.live.com/blog/cns!F891FBE915CCE8EE!515.entry

the next thing i also need you to make sureis that your root CA certificate is located in your trust root certificateion authorities.



0
 

Author Closing Comment

by:DaveHFry
ID: 34463328
I found that article after posting the question, it is the answer
0

Featured Post

Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question