Solved

SSL Certificate for exchange 2010

Posted on 2011-09-23
12
1,045 Views
Last Modified: 2012-05-12
Hi,
We have bought thrid party ssl certificate to run Ipad and for external clients to run pop3/or imap4 for sbs 2011 & exchange 2010. we have installed godaddy ssl certificate as mail.mydoamin.co.uk, we had already got another ssl certificate called remote.mydomain.co.uk now firstly when i check the connectivity for activesync on www.testexchangeconnectivity.com, it tested ok (mail.mydomain.co.uk) with no error but still the ipad is not working, it says "unable to verify the account information". ?
secondly can i remove remote.mydomain.co.uk issued by sbs2011 CA? (from the exchange certificates and assign smtp,pop,imap,iis service to the third party ssl certificate??)
0
Comment
Question by:6300ac
  • 7
  • 5
12 Comments
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590556
Does your SSL certificate work in OWA from Internet Explorer? Does OWA work on the iPad in Safari?

If you have installed the purchased SSL certificate then you shouldn't need the self generated one. Did you buy a SAN SSL cert?
0
 

Author Comment

by:6300ac
ID: 36590587
yes it works , owa works both from outside computers and ipad safari..thanks..can i remove the other certificate??
0
 

Author Comment

by:6300ac
ID: 36590598
but ipad is not connecting via exchange active sync..and also if i want to download emails via pop3 or imap4 service it is asking for network password again but cant go any further to download emails from outside..
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 10

Expert Comment

by:ThorinO
ID: 36590604
You should be fine to remove the old certificate if the new one has been installed.
0
 

Author Comment

by:6300ac
ID: 36590620
but the old one is from the server it self...if i remove that old one should i assign all the service to the new one?? (the mail.mydomain.co.uk, 3rd party...)
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590626
You can assign the services before you delete, if you assign the services to the new one you don't need to delete the old certificate it will just sit there doing nothing. I would suggest that over the delete.
0
 

Author Comment

by:6300ac
ID: 36590657
it is asking to overwrite certificate yes or yes to all etc message when i assigning all services to the new certificate..should i tell yes to all??
0
 
LVL 10

Accepted Solution

by:
ThorinO earned 500 total points
ID: 36590667
Correct, once you do that the new trusted cert will be used instead of the self generated one. Assuming all the values are correct on the new cert then all should go well. I would run the same exchangeconnectivity test you did before once you make the change as well as OWA and the iPad connection.
0
 

Author Comment

by:6300ac
ID: 36590685
cant remove the smtp service from the old one??
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590712
You should be able to assign all services, please see the following: http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm
0
 

Author Comment

by:6300ac
ID: 36590739
Yes i did that,sitll ...

when i open outlook on lan there is a message that remote.mydomain.co.uk ----
the name on the cerificate is invalid..
0
 

Author Comment

by:6300ac
ID: 36590742
it is a security alert..
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Read this checklist to learn more about the 15 things you should never include in an email signature.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now