• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 305
  • Last Modified:

Question about Exchange 2007 Certificates,

I am working in a company lab practicing with client access/hub trasport servers renewing TLS certificates with this article;
http://technet.microsoft.com/en-us/library/aa998840(EXCHG.80).aspx.
When used Get-Certificate I saw two identical Certs for POP,SMTP,IMAP and IIS, saw when I used the cert cloning methode and deleted the old certs I did not just delete the one I replaced also delted the second old cert thinking it was  from a previous engineer rrunning a test. So now that I am done and my OWA is not working I wonder what I am missing. OWA was not working before so maybe need to review what certs I may be missing? Maybe the Cert I cloned had a problem, please review and offer suggestions;


Get-ExchangeCertificate | fl


AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System
                     .Security.AccessControl.CryptoKeyAccessRule, System.Securi
                     ty.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {server1, server1.mti.com}
HasPrivateKey      : True
IsSelfSigned       : True
Issuer             : CN=server1
NotAfter           : 3/28/2016 9:44:50 AM
NotBefore          : 3/28/2011 9:44:50 AM
PublicKeySize      : 2048
RootCAType         : None
SerialNumber       : 60969A1C283642A14B59EE6E6FB14C3B
Services           : IMAP, POP, IIS, SMTP
Status             : Valid
Subject            : CN=server1
Thumbprint         : c34A4E3BA02C083F56A8CD89EB2A9E44227E8755

0
355LT1
Asked:
355LT1
  • 4
  • 2
2 Solutions
 
MegaNuk3Commented:
What error does OWA give you?
0
 
JaredJ1Commented:
This looks like a self signed certificate... so it will give you  a certificate warning when you attempt to use OWA. You can still use OWA, but you will have to 'Accept the risks' and continue even though there will be a certificate name mismatch. You could potentially import the certificate to the local trusted root authority store and you won't get the warning any more.

For a lab a self signed certificate is ok, but ideally in a production environment you'll use a certificate from a trusted public CA.
0
 
355LT1Author Commented:
OWA gives me the cert warning to proceed, but when I continue I just get a blank page.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
MegaNuk3Commented:
Do an IISReset
0
 
355LT1Author Commented:
The OWA page error pag not page and domian not found, I wonder if I need a domain in the certs subject name?
0
 
MegaNuk3Commented:
So you are getting page 'Not Found' now? Go into IIS click on OWA VD, then in the middle pane, look at HTTP redirects and make sure it is not redirecting anywhere
0
 
MegaNuk3Commented:
Thanks for the points, was OWA redirecting?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now