Solved

SSL Certificate for exchange 2010

Posted on 2011-09-23
12
1,046 Views
Last Modified: 2012-05-12
Hi,
We have bought thrid party ssl certificate to run Ipad and for external clients to run pop3/or imap4 for sbs 2011 & exchange 2010. we have installed godaddy ssl certificate as mail.mydoamin.co.uk, we had already got another ssl certificate called remote.mydomain.co.uk now firstly when i check the connectivity for activesync on www.testexchangeconnectivity.com, it tested ok (mail.mydomain.co.uk) with no error but still the ipad is not working, it says "unable to verify the account information". ?
secondly can i remove remote.mydomain.co.uk issued by sbs2011 CA? (from the exchange certificates and assign smtp,pop,imap,iis service to the third party ssl certificate??)
0
Comment
Question by:6300ac
  • 7
  • 5
12 Comments
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590556
Does your SSL certificate work in OWA from Internet Explorer? Does OWA work on the iPad in Safari?

If you have installed the purchased SSL certificate then you shouldn't need the self generated one. Did you buy a SAN SSL cert?
0
 

Author Comment

by:6300ac
ID: 36590587
yes it works , owa works both from outside computers and ipad safari..thanks..can i remove the other certificate??
0
 

Author Comment

by:6300ac
ID: 36590598
but ipad is not connecting via exchange active sync..and also if i want to download emails via pop3 or imap4 service it is asking for network password again but cant go any further to download emails from outside..
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 
LVL 10

Expert Comment

by:ThorinO
ID: 36590604
You should be fine to remove the old certificate if the new one has been installed.
0
 

Author Comment

by:6300ac
ID: 36590620
but the old one is from the server it self...if i remove that old one should i assign all the service to the new one?? (the mail.mydomain.co.uk, 3rd party...)
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590626
You can assign the services before you delete, if you assign the services to the new one you don't need to delete the old certificate it will just sit there doing nothing. I would suggest that over the delete.
0
 

Author Comment

by:6300ac
ID: 36590657
it is asking to overwrite certificate yes or yes to all etc message when i assigning all services to the new certificate..should i tell yes to all??
0
 
LVL 10

Accepted Solution

by:
ThorinO earned 500 total points
ID: 36590667
Correct, once you do that the new trusted cert will be used instead of the self generated one. Assuming all the values are correct on the new cert then all should go well. I would run the same exchangeconnectivity test you did before once you make the change as well as OWA and the iPad connection.
0
 

Author Comment

by:6300ac
ID: 36590685
cant remove the smtp service from the old one??
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590712
You should be able to assign all services, please see the following: http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm
0
 

Author Comment

by:6300ac
ID: 36590739
Yes i did that,sitll ...

when i open outlook on lan there is a message that remote.mydomain.co.uk ----
the name on the cerificate is invalid..
0
 

Author Comment

by:6300ac
ID: 36590742
it is a security alert..
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In-place Upgrading Dirsync to Azure AD Connect
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question