Solved

Need help in Issuing a certificate from and internal CA an import

Posted on 2011-03-10
11
849 Views
Last Modified: 2012-05-11
I am trying to import certificate but I am getting the below error.

'The certificate status cannot be determined because tyhe revocation check failed'

EE experts please help
0
Comment
Question by:-MAS
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
11 Comments
 
LVL 25

Author Comment

by:-MAS
ID: 35093902
I forget to mention my server is exchange2010 and issuing the certificate from windows2003 CA
0
 
LVL 9

Expert Comment

by:x3man
ID: 35093940
0
 
LVL 9

Accepted Solution

by:
x3man earned 167 total points
ID: 35093949
0
Why You Need a DevOps Toolchain

IT needs to deliver services with more agility and velocity. IT must roll out application features and innovations faster to keep up with customer demands, which is where a DevOps toolchain steps in. View the infographic to see why you need a DevOps toolchain.

 
LVL 25

Author Comment

by:-MAS
ID: 35093951
This I tried but did not solve my problem.

0
 
LVL 11

Assisted Solution

by:Tasmant
Tasmant earned 167 total points
ID: 35094152
Could you disable the revocation check options into your browser (Internet Explorer/options/advanced)
for "server revocation check and edotor revocation check"?
It could be a workaround but not the solution.
Else i would suggest to open your certificate in order to read the CRL distribution point and check if any ot the paths are accessible:
should be LDAP and http by default
- http://myca.domain.com/crl/myca.crl
- ldap://myca.domain.com/CN=myca,CN=RootCA,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=domainr,DC=com?certificateRevocationList?base?objectClass=cRLDistributionPoint

If none of these paths are accessible then the check cannot be processed.
0
 
LVL 25

Author Comment

by:-MAS
ID: 35098889
many thanks  to your reply
I tried but it did not solve my problem


0
 
LVL 25

Author Comment

by:-MAS
ID: 35098937
many thanks  to your reply
I tried but it did not solve my problem


0
 
LVL 43

Assisted Solution

by:Amit
Amit earned 166 total points
ID: 35123063
0
 
LVL 25

Author Comment

by:-MAS
ID: 35127121
This is to configure proxy.
I do not have a proxy.

What shall I do if I do not have a proxy
0
 
LVL 26

Expert Comment

by:e_aravind
ID: 35128594
Normally on the internal CA one shouldn't have this issue.

> Do you have the correct child and root-certificate on the E2010 machines\computer store?
(mmc > Certificate > computer > local computer)

> when you try accessing the cert. from the c:\ (or any file explorer)
do you see any red-x mark?
is that cert. trusted by this E2010 server
0

Featured Post

Instantly Create Instructional Tutorials

Contextual Guidance at the moment of need helps your employees adopt to new software or processes instantly. Boost knowledge retention and employee engagement step-by-step with one easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question