[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 684
  • Last Modified:

Exchange 2010 certification issue

Hi,

I just purchased UC certificate from Globalsign. ICBExc2010GS is new certificate and I have tryed to assign services but it asked me if I wanna overwrite existing certificate and I said No! At the moment internally Globalsign certificate is active and working fine but externally still old certificate working. I just wanna take the steps carefully, so could you guide me with safe way please?


 certificate
0
teomcam
Asked:
teomcam
  • 8
  • 7
1 Solution
 
Shreedhar EtteCommented:
At the over writre promot you should have said Yes.
0
 
teomcamAuthor Commented:
Should I try assign again or its too late? Could you give more details please?
0
 
Shreedhar EtteCommented:
try assign again.
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
teomcamAuthor Commented:
I just tryed and assigned and overwritted but externally still old one appearing.
0
 
Shreedhar EtteCommented:
- Open Internet Information Services (IIS) Manager.

- Select the Default Web Site > Click Bindings > Select the port 443> View Certificate> it has to be ICBExc2010GS.

- If not select the ICBExc2010GS > Click Ok.

- Restart the IIS Admin Service.

Does you have ISA?
0
 
teomcamAuthor Commented:
Hi,
I tryed and restarted IIS Admin service but still same. Yes, I have TMG2010 (ISA).
0
 
Shreedhar EtteCommented:
You need to install the certificate on TMG2010 on the OWA rule.
0
 
teomcamAuthor Commented:
Hi shreedhar,
I just imported the same new certificate of exchnage 2010 to the TMG2010's Computer/Personal certificates. As you can see below there is an existing OWA rule called OWA-Exchange 2010. According to that should I still create another OWA rule?

 tmg2010
0
 
Shreedhar EtteCommented:
Do not create the Rule...Modify the OWA-Exchange 2010 rule and at Select Certificate options..Select the Certificate which you just now added.

0
 
teomcamAuthor Commented:
Well that intersting why Globalsign certificate is not valid?

 weblistener
0
 
Shreedhar EtteCommented:
Have you also installed the Intermidiate certificate in the TMG 2010?
0
 
teomcamAuthor Commented:
I have purchased OV certificate and they sent me 2 certificates. Intermediaet also not valid. When I make request I did not include TMG's name or IP. Would it be the problem?


One of them says: MUST BE INSTALLED ON YOUR WEB SERVER:
Your SSL Certificate (Formatted for the majority of web server
software including IIS and Apache based servers):

Other one says:

MUST BE INSTALLED ON YOUR WEB SERVER:
OrganizationSSL Intermediate Certificate (SGC version):

 intermediate
0
 
Shreedhar EtteCommented:
Refer this article to install the certificates on TMG 2010:
http://www.globalsign.com/support/intermediate/organizationssl_intermediate_exchange.php
0
 
teomcamAuthor Commented:
Hi again,
I found the problem. After assig the new certificate we had to export private key and import to TMG2010. After that certificate became to valid and now new certification published succesfully. Thanks very much for your help.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 8
  • 7
Tackle projects and never again get stuck behind a technical roadblock.
Join Now