Solved

This CA root certificate is not trusted. to enable trust, install this certificate in the trusted root certification authorities store.

Posted on 2011-09-19
9
33,279 Views
Last Modified: 2016-08-31
I was able to renew a self signing certificate on Exchange 2007 using the console, but I cannot make it trusted. The Exchange box is part of a domain, but the DC doesn't have SSL enabled so I'm working on the exchange box only. How do I add this cert to the trusted root cert authorities store?
0
Comment
Question by:fnillc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 16

Expert Comment

by:jessc7
ID: 36563772
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 36563926
are you trying to install a certificate from public CA ? or internal CA ? if public, no need for more config just install it.
0
 

Author Comment

by:fnillc
ID: 36564110
I need to add the cert to the trusted root CA on the exchange server itself, not a workstation. I renewed the cert using the Exchange Management Shell on the Exchange box via "Get-ExchangeCertificate -thumbprint "xxx" New-Exchangecertificate". I'm getting the "install this certificate in the trusted root certification authorities store" in the IIS Manager - Default Web Site Properties - View Certificate.
0
Ready to trade in that old firewall?

Whether you need to trade-up to a shiny new Firebox or just ready to upgrade from whatever appliance you're using now, WatchGuard has the right appliance for you! Find your perfect Firebox today with appliance sizing tool!

 
LVL 16

Expert Comment

by:jessc7
ID: 36564174
Manage Trusted Root Certificates (Windows 7, Windows Server 2008 R2)http://technet.microsoft.com/en-us/library/cc754841.aspx
0
 
LVL 16

Expert Comment

by:jessc7
ID: 36564177
Diregard the previous link. It wasn't what I thought - sorry.
0
 
LVL 8

Accepted Solution

by:
Shmoid earned 500 total points
ID: 36564802
Just copy it from the installed location to the trusted root store.

To do so:

Launch MMC.
Add Certificates Snap-in for Local Computer.
Expand Certificates (Local Computer)
Expand Personal
Click Certificates folder
Right click on the self-signed cert and choose copy
Expand Trusted Root Certification Authorities
Right click Certificates folder (under Trusted Root...) and select Paste.
You will be prompted with a security warning. Verify the cert listed is the self-signed cert and click yes.
0
 

Author Comment

by:fnillc
ID: 36569480
Thanks Shmoid! your sugestion fix it.
0
 
LVL 1

Expert Comment

by:Versatile450
ID: 40851391
What happens if I run that command and I get prompted to insert a smartcard?..
0
 

Expert Comment

by:Jason Jason
ID: 41779062
Thank you so much Shmoid! You just saved my hide.
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
Sometimes clients can lose connectivity with the Lotus Notes Domino Server, but there's not always an obvious answer as to why it happens.   Read this article to follow one of the first experiences I had with Lotus Notes on a client's machine, my…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Suggested Courses

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question