SSL stopped suddenly

I placed a godaddy turbo SSL into my IIS6 and it was working fine until today when the active sync with OWA and Phones stopped working.

I get a certificate warning that my certificate is not from a trusted Source

Security Wqarning

There are problems with the security certificate for this site

This Certificate is not from a trusted authority

Continue View cancel

It is on a server 2003 with exchange in IIS6

I cannot get email on the phones or on the web


any Ideas?
lunat1kdonAsked:
Who is Participating?
 
mcsweenConnect With a Mentor Sr. Network AdministratorCommented:
Could this be an issue with your firewall?  Possibly a NAT policy or ACL was inadvertently changed?  

Can you access the site from the same subnet/VLAN that the server resides on?  

If you aren't using host headers in IIS can you access the site by private IP or Public IP?

I assume you've done this but I have to ask if you have tried doing a start, run, iisreset
0
 
mcsweenConnect With a Mentor Sr. Network AdministratorCommented:
Check to see if GoDaddy's certificate is still in the Trusted Root Certification Authorities store.

Start, run, mmc, add/remove snap in, certificates, ok, trusted root certification authorities folder
0
 
DarinTCHConnect With a Mentor Senior CyberSecurity EngineerCommented:
how old is  the cert
self signed?
how did you get it on the phone if not trusted?
do you have a CA - certificate auth in your network
what about the CRL - cert revocation list
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
lunat1kdonAuthor Commented:
Yes it is in the Trusted Root Certification Authorities store
0
 
lunat1kdonAuthor Commented:
UPDATE  

The SSL is ok 100% I even reinstalled and godaddy  says it is good but when we go to the page it shows blocked with HTTPS  with only http it says requires login

0
 
lunat1kdonAuthor Commented:
OK another update...

I did a dnslookup and the domain name is incorrect, but when i look at it in IIS it is ok and in DNS it is ok.....

where can i change the domain NS name?
0
 
mcsweenSr. Network AdministratorCommented:
Can you explain a little more about what you mean when you say your domain name is incorrect?

What did you do a nslookup on?
0
 
lunat1kdonAuthor Commented:
Strange thing now the NSlookup resolves to the correct name, but I still have no webmail or phone push via active sync



I get the webpage cannot display this page now

if i go to the webmail with out https  it says:

this page requires you to log in
0
 
lunat1kdonAuthor Commented:
I have not changed any NAT or ACL

No I cannot access the site internally

I have restarted IIS

what is strange is that the cert error i am getting is from the main website

When i  check the ssl on the net it says no ssl is available
0
 
lunat1kdonAuthor Commented:
Thanks guys, all of your answers led to the solution.

It was not until the last ans by McSween did I realize that the OWA site itself was down, so I recreated the site from the web file of my owa website and BAM! it fired right up no worries.

Not sure how that happened as there are 0 errors for that in event viewer

Thanx again folks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.