?
Solved

Exchange Certificate not trusted

Posted on 2010-11-25
5
Medium Priority
?
326 Views
Last Modified: 2012-05-10
I have 2 mail servers both have SSL certificates but how do I add the issuer of the certificate to all machines so
that any machine automatically trusts it? It a company called ALpha CA.

I'd need step by step assistance I'm afraid as while I understand how certificates work, integrating them
is something different. To me anyway
0
Comment
Question by:Majicthise
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 26

Accepted Solution

by:
Tony J earned 1500 total points
ID: 34213037
This article explains how to do it via group policy:

http://technet.microsoft.com/en-us/library/cc738131(WS.10).aspx

However, it may be more cost effective to buy 'proper' UC certificates from GoDaddy or Certificatesforexchange.com
0
 

Author Comment

by:Majicthise
ID: 34213110
Yeah I saw that
I have the certificates emailed and installed them OK ontot he exchangeboxes
I just dont see how to get them into AD?

Email

-----BEGIN CERTIFICATE-----
MIIEtTCCA52gAwIBAgILAQAAAAABKLq05RAwDQYJKoZIhvcNAQEFBQAwNjERMA8G
A1UECxMIQWxwaGEgQ0ExDjAMBgNVBAoTBUFscGhhMREwDwYDVQQDEwhBbHBoYSBD
1BqwvUbSvkrjtc5JsWkRedIY1gmJqn6aeflCrqeRTZQPA10EwVz/qinji+pZ/GBm
966fuTAhRIt9
-----END CERTIFICATE-----


Signed Certificate (PKCS7 Format)

-----BEGIN PKCS7-----
MIIMkwYJKoZIhvcNAQcCoIIMhDCCDIACAQExADALBgkqhkiG9w0BBwGgggxoMIIE
tTCCA52gAwIBAgILAQAAAAABKLq05RAwDQYJKoZIhvcNAQEFBQAwNjERMA8GA1UE
CxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMIIBIjANBgkq
Pd5BzAeuY1K/U1P0K+nH/bb3gl+F0kEY24GzBBzFH6SAbxUgyd4MiAod1mZV4vxI
ySkmaeAxAA==
-----END PKCS7-----


Bundle Certificate (Intermediate)

-----BEGIN CERTIFICATE-----
MIIEMjCCAxqgAwIBAgILBAAAAAABHkSl8XEwDQYJKoZIhvcNAQEFBQAwVzELMAkG
SI2Ddng5V2fqZH5xHY5A5qWrZDL3g8d7vaTe3IMTpKKM8yp26RpwSlEXt2wm3+4F
x05b2jZUoUl59koGCuMB6v5Icws9nLgogfC0pchimhEozRjRByPSuu4U24dk7Suq
fxq9CncU1dXMMRKi7wajF8HgGKvHUw==
-----END CERTIFICATE-----


Root Certificate (CA)

-----BEGIN CERTIFICATE-----
MIIDdTCCAl2gAwIBAgILBAAAAAABFUtaw5QwDQYJKoZIhvcNAQEFBQAwVzELMAkG
A1UEBhMCQkUxGTAXBgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExEDAOBgNVBAsTB1Jv
AbEVtQwdpf5pLGkkeB6zpxxxYu7KyJesF12KwvhHhm4qxFYxldBniYUr+WymXUad
DKqC5JlR3XC321Y9YeRq4VzW9v493kHMB65jUr9TU/Qr6cf9tveCX4XSQRjbgbME
HMUfpIBvFSDJ3gyICh3WZlXi/EjJKSZp4A==
-----END CERTIFICATE-----

I've tried saving various section as Cer crt and p7b but it doesn't want to know.
0
 

Author Comment

by:Majicthise
ID: 34213175
Oddly enough I tried it with another certificate and it worked
Then went back to the original one and it worked
Maybe cut 'n' paste was the issue?
0
 

Author Closing Comment

by:Majicthise
ID: 34213181
Got this fa but couldnt get certificate installed. Thought it was process of adding certificates that was flawed more liekly my cut & paste...
0
 
LVL 26

Expert Comment

by:Tony J
ID: 34213196
Sorry I didn't get back sooner.

Most likely there was an extraneous space / carriage return after the end of the ===end certificate=== bit. So easy in notepad and the like.

Thanks for the points.
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here's a look at newsworthy articles and community happenings during the last month.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This video discusses moving either the default database or any database to a new volume.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses
Course of the Month15 days, 4 hours left to enroll

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question