Exchange 2010 & certificate issue

Posted on 2011-09-14
Last Modified: 2012-08-14
All staff mailboxes are on exchange 2003 server

Staff is using office 2007 & 2010 (soon everyone will be moving to 2010)

We are moving to Exchange 2010. We have installed the server but we do not have the san certifcate yet. THe exchange 2010 server has no mailboxes either

In the meantime users are gettng security alerts from our exchange 2010 server regarding certifcates every time they start up outlook

Is there an stop the security/certificate prompts from exchange 2010?

Question by:iamuser
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 13

Expert Comment

ID: 36536578
Since you installed exchange it is now the CAs server for the domain, the client are hitting it and then being redirected to the 2003 server.
Here is a good guide on getting the correct server certificate installed. The easiest way is to just get the correct certificate on the 2010 server

Author Comment

ID: 36537417
The problem is we don't know when we'll get the digital certificate from the Certification Authority. It's not up to me, it's management that needs to approve it. I can run the "New Exchange Certificate" wizard but since i can't import or bind it I don't see how it will help me

LVL 13

Expert Comment

ID: 36537432
Okay so no mailboxes on 2k10 server is mail flow actually going through the server (have you changed the firewall rules to point to the new server?) If not can you not just shut the new server down...........
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 36537534
Firewall is still pointing to the existing windows 2003 server, so no mailfow is going to the new server. We could shut down exchange 2010 but it may be down for 1 or even 2 months at which point AD may remove the server. Management is slow

LVL 13

Expert Comment

ID: 36537554
Is it a domain controller? I can be turned off for up to 59 days (tombstone) Just make sure it gets booted every three weeks or so if it is a domain controller. You could also just stop all exchange services on the server.

Author Comment

ID: 36537607
it's not a domain controller just a regular windows 2008 server running exchange 2010. I wasn't sure if stopping the exchange services will stop the certificate prompts but if it does that might be the perferct solution

LVL 13

Accepted Solution

5g6tdcv4 earned 500 total points
ID: 36537640
Give it a shot.
You may need to close and reopen outlook on the client machines

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

710 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question