We help IT Professionals succeed at work.

Exchange 2010 certification issue

teomcam
teomcam asked
on
Medium Priority
694 Views
Last Modified: 2012-05-11
Hi,

I just purchased UC certificate from Globalsign. ICBExc2010GS is new certificate and I have tryed to assign services but it asked me if I wanna overwrite existing certificate and I said No! At the moment internally Globalsign certificate is active and working fine but externally still old certificate working. I just wanna take the steps carefully, so could you guide me with safe way please?


 certificate
Comment
Watch Question

Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
At the over writre promot you should have said Yes.

Author

Commented:
Should I try assign again or its too late? Could you give more details please?
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
try assign again.

Author

Commented:
I just tryed and assigned and overwritted but externally still old one appearing.
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
- Open Internet Information Services (IIS) Manager.

- Select the Default Web Site > Click Bindings > Select the port 443> View Certificate> it has to be ICBExc2010GS.

- If not select the ICBExc2010GS > Click Ok.

- Restart the IIS Admin Service.

Does you have ISA?

Author

Commented:
Hi,
I tryed and restarted IIS Admin service but still same. Yes, I have TMG2010 (ISA).
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
You need to install the certificate on TMG2010 on the OWA rule.
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:

Author

Commented:
Hi shreedhar,
I just imported the same new certificate of exchnage 2010 to the TMG2010's Computer/Personal certificates. As you can see below there is an existing OWA rule called OWA-Exchange 2010. According to that should I still create another OWA rule?

 tmg2010
Technical Manager
CERTIFIED EXPERT
Top Expert 2010
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
Well that intersting why Globalsign certificate is not valid?

 weblistener
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
Have you also installed the Intermidiate certificate in the TMG 2010?

Author

Commented:
I have purchased OV certificate and they sent me 2 certificates. Intermediaet also not valid. When I make request I did not include TMG's name or IP. Would it be the problem?


One of them says: MUST BE INSTALLED ON YOUR WEB SERVER:
Your SSL Certificate (Formatted for the majority of web server
software including IIS and Apache based servers):

Other one says:

MUST BE INSTALLED ON YOUR WEB SERVER:
OrganizationSSL Intermediate Certificate (SGC version):

 intermediate
Shreedhar EtteTechnical Manager
CERTIFIED EXPERT
Top Expert 2010

Commented:
Refer this article to install the certificates on TMG 2010:
http://www.globalsign.com/support/intermediate/organizationssl_intermediate_exchange.php

Author

Commented:
Hi again,
I found the problem. After assig the new certificate we had to export private key and import to TMG2010. After that certificate became to valid and now new certification published succesfully. Thanks very much for your help.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.