Link to home
Start Free TrialLog in
Avatar of Majicthise
Majicthise

asked on

Exchange Certificate not trusted

I have 2 mail servers both have SSL certificates but how do I add the issuer of the certificate to all machines so
that any machine automatically trusts it? It a company called ALpha CA.

I'd need step by step assistance I'm afraid as while I understand how certificates work, integrating them
is something different. To me anyway
ASKER CERTIFIED SOLUTION
Avatar of Tony J
Tony J
Flag of United Kingdom of Great Britain and Northern Ireland image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Majicthise
Majicthise

ASKER

Yeah I saw that
I have the certificates emailed and installed them OK ontot he exchangeboxes
I just dont see how to get them into AD?

Email

-----BEGIN CERTIFICATE-----
MIIEtTCCA52gAwIBAgILAQAAAAABKLq05RAwDQYJKoZIhvcNAQEFBQAwNjERMA8G
A1UECxMIQWxwaGEgQ0ExDjAMBgNVBAoTBUFscGhhMREwDwYDVQQDEwhBbHBoYSBD
1BqwvUbSvkrjtc5JsWkRedIY1gmJqn6aeflCrqeRTZQPA10EwVz/qinji+pZ/GBm
966fuTAhRIt9
-----END CERTIFICATE-----


Signed Certificate (PKCS7 Format)

-----BEGIN PKCS7-----
MIIMkwYJKoZIhvcNAQcCoIIMhDCCDIACAQExADALBgkqhkiG9w0BBwGgggxoMIIE
tTCCA52gAwIBAgILAQAAAAABKLq05RAwDQYJKoZIhvcNAQEFBQAwNjERMA8GA1UE
CxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMIIBIjANBgkq
Pd5BzAeuY1K/U1P0K+nH/bb3gl+F0kEY24GzBBzFH6SAbxUgyd4MiAod1mZV4vxI
ySkmaeAxAA==
-----END PKCS7-----


Bundle Certificate (Intermediate)

-----BEGIN CERTIFICATE-----
MIIEMjCCAxqgAwIBAgILBAAAAAABHkSl8XEwDQYJKoZIhvcNAQEFBQAwVzELMAkG
SI2Ddng5V2fqZH5xHY5A5qWrZDL3g8d7vaTe3IMTpKKM8yp26RpwSlEXt2wm3+4F
x05b2jZUoUl59koGCuMB6v5Icws9nLgogfC0pchimhEozRjRByPSuu4U24dk7Suq
fxq9CncU1dXMMRKi7wajF8HgGKvHUw==
-----END CERTIFICATE-----


Root Certificate (CA)

-----BEGIN CERTIFICATE-----
MIIDdTCCAl2gAwIBAgILBAAAAAABFUtaw5QwDQYJKoZIhvcNAQEFBQAwVzELMAkG
A1UEBhMCQkUxGTAXBgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExEDAOBgNVBAsTB1Jv
AbEVtQwdpf5pLGkkeB6zpxxxYu7KyJesF12KwvhHhm4qxFYxldBniYUr+WymXUad
DKqC5JlR3XC321Y9YeRq4VzW9v493kHMB65jUr9TU/Qr6cf9tveCX4XSQRjbgbME
HMUfpIBvFSDJ3gyICh3WZlXi/EjJKSZp4A==
-----END CERTIFICATE-----

I've tried saving various section as Cer crt and p7b but it doesn't want to know.
Avatar of Majicthise
Majicthise

ASKER

Oddly enough I tried it with another certificate and it worked
Then went back to the original one and it worked
Maybe cut 'n' paste was the issue?
Avatar of Majicthise
Majicthise

ASKER

Got this fa but couldnt get certificate installed. Thought it was process of adding certificates that was flawed more liekly my cut & paste...
Avatar of Tony J
Tony J
Flag of United Kingdom of Great Britain and Northern Ireland image
Sorry I didn't get back sooner.

Most likely there was an extraneous space / carriage return after the end of the ===end certificate=== bit. So easy in notepad and the like.

Thanks for the points.