Solved

SSL Certificate for exchange 2010

Posted on 2011-09-23
12
1,048 Views
Last Modified: 2012-05-12
Hi,
We have bought thrid party ssl certificate to run Ipad and for external clients to run pop3/or imap4 for sbs 2011 & exchange 2010. we have installed godaddy ssl certificate as mail.mydoamin.co.uk, we had already got another ssl certificate called remote.mydomain.co.uk now firstly when i check the connectivity for activesync on www.testexchangeconnectivity.com, it tested ok (mail.mydomain.co.uk) with no error but still the ipad is not working, it says "unable to verify the account information". ?
secondly can i remove remote.mydomain.co.uk issued by sbs2011 CA? (from the exchange certificates and assign smtp,pop,imap,iis service to the third party ssl certificate??)
0
Comment
Question by:6300ac
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 5
12 Comments
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590556
Does your SSL certificate work in OWA from Internet Explorer? Does OWA work on the iPad in Safari?

If you have installed the purchased SSL certificate then you shouldn't need the self generated one. Did you buy a SAN SSL cert?
0
 

Author Comment

by:6300ac
ID: 36590587
yes it works , owa works both from outside computers and ipad safari..thanks..can i remove the other certificate??
0
 

Author Comment

by:6300ac
ID: 36590598
but ipad is not connecting via exchange active sync..and also if i want to download emails via pop3 or imap4 service it is asking for network password again but cant go any further to download emails from outside..
0
Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

 
LVL 10

Expert Comment

by:ThorinO
ID: 36590604
You should be fine to remove the old certificate if the new one has been installed.
0
 

Author Comment

by:6300ac
ID: 36590620
but the old one is from the server it self...if i remove that old one should i assign all the service to the new one?? (the mail.mydomain.co.uk, 3rd party...)
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590626
You can assign the services before you delete, if you assign the services to the new one you don't need to delete the old certificate it will just sit there doing nothing. I would suggest that over the delete.
0
 

Author Comment

by:6300ac
ID: 36590657
it is asking to overwrite certificate yes or yes to all etc message when i assigning all services to the new certificate..should i tell yes to all??
0
 
LVL 10

Accepted Solution

by:
ThorinO earned 500 total points
ID: 36590667
Correct, once you do that the new trusted cert will be used instead of the self generated one. Assuming all the values are correct on the new cert then all should go well. I would run the same exchangeconnectivity test you did before once you make the change as well as OWA and the iPad connection.
0
 

Author Comment

by:6300ac
ID: 36590685
cant remove the smtp service from the old one??
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590712
You should be able to assign all services, please see the following: http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm
0
 

Author Comment

by:6300ac
ID: 36590739
Yes i did that,sitll ...

when i open outlook on lan there is a message that remote.mydomain.co.uk ----
the name on the cerificate is invalid..
0
 

Author Comment

by:6300ac
ID: 36590742
it is a security alert..
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses
Course of the Month3 days, 11 hours left to enroll

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question