I am trying to use Windows Certificate Authority to complete a wildcard certificate request I generated using exchange 2010. Exchange and the CA services are both installed on the same server, Server 2008 64 bit. I've tried doing it through IIS 7 as well as through the certificate authority (administrative tools).
I always get an error ASN1 Bad Tag Value met when i try to complete the request. I've read other articles that say to ignore this error and the certificate will still complete, however with exchange 2010 and server 2008 this doesn't seem to be the case. I can't find a completed request on my server and the console in CA doesn't show any certificates under issued/failed/pending, etc.
I am trying to use this article
http://exchangeshell.wordpress.com/2009/09/20/create-ucc-san-private-ca-issued-certificate-to-replace-self-signed-certificate-exchange-2007/
I am going to go through it right from the start, but i think it is still going to give me that same error.
This video was a huge help:
http://www.msexchange.org/articles_tutorials/videos/exchange-server-2010/video-certificate-wizard-Exchange-2010.html
Now when I run the Exchange connectivity test, it says:
"The certificate chain couldn't be built. You may be missing required intermediate certificates."
I am working on this right now