Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 379
  • Last Modified:

SSL stopped suddenly

I placed a godaddy turbo SSL into my IIS6 and it was working fine until today when the active sync with OWA and Phones stopped working.

I get a certificate warning that my certificate is not from a trusted Source

Security Wqarning

There are problems with the security certificate for this site

This Certificate is not from a trusted authority

Continue View cancel

It is on a server 2003 with exchange in IIS6

I cannot get email on the phones or on the web


any Ideas?
0
lunat1kdon
Asked:
lunat1kdon
  • 6
  • 3
3 Solutions
 
mcsweenSr. Network AdministratorCommented:
Check to see if GoDaddy's certificate is still in the Trusted Root Certification Authorities store.

Start, run, mmc, add/remove snap in, certificates, ok, trusted root certification authorities folder
0
 
DarinTCHSenior CyberSecurity EngineerCommented:
how old is  the cert
self signed?
how did you get it on the phone if not trusted?
do you have a CA - certificate auth in your network
what about the CRL - cert revocation list
0
 
lunat1kdonAuthor Commented:
Yes it is in the Trusted Root Certification Authorities store
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
lunat1kdonAuthor Commented:
UPDATE  

The SSL is ok 100% I even reinstalled and godaddy  says it is good but when we go to the page it shows blocked with HTTPS  with only http it says requires login

0
 
lunat1kdonAuthor Commented:
OK another update...

I did a dnslookup and the domain name is incorrect, but when i look at it in IIS it is ok and in DNS it is ok.....

where can i change the domain NS name?
0
 
mcsweenSr. Network AdministratorCommented:
Can you explain a little more about what you mean when you say your domain name is incorrect?

What did you do a nslookup on?
0
 
lunat1kdonAuthor Commented:
Strange thing now the NSlookup resolves to the correct name, but I still have no webmail or phone push via active sync



I get the webpage cannot display this page now

if i go to the webmail with out https  it says:

this page requires you to log in
0
 
mcsweenSr. Network AdministratorCommented:
Could this be an issue with your firewall?  Possibly a NAT policy or ACL was inadvertently changed?  

Can you access the site from the same subnet/VLAN that the server resides on?  

If you aren't using host headers in IIS can you access the site by private IP or Public IP?

I assume you've done this but I have to ask if you have tried doing a start, run, iisreset
0
 
lunat1kdonAuthor Commented:
I have not changed any NAT or ACL

No I cannot access the site internally

I have restarted IIS

what is strange is that the cert error i am getting is from the main website

When i  check the ssl on the net it says no ssl is available
0
 
lunat1kdonAuthor Commented:
Thanks guys, all of your answers led to the solution.

It was not until the last ans by McSween did I realize that the OWA site itself was down, so I recreated the site from the web file of my owa website and BAM! it fired right up no worries.

Not sure how that happened as there are 0 errors for that in event viewer

Thanx again folks
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

  • 6
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now