Solved

SSL Certificate for exchange 2010

Posted on 2011-09-23
12
1,043 Views
Last Modified: 2012-05-12
Hi,
We have bought thrid party ssl certificate to run Ipad and for external clients to run pop3/or imap4 for sbs 2011 & exchange 2010. we have installed godaddy ssl certificate as mail.mydoamin.co.uk, we had already got another ssl certificate called remote.mydomain.co.uk now firstly when i check the connectivity for activesync on www.testexchangeconnectivity.com, it tested ok (mail.mydomain.co.uk) with no error but still the ipad is not working, it says "unable to verify the account information". ?
secondly can i remove remote.mydomain.co.uk issued by sbs2011 CA? (from the exchange certificates and assign smtp,pop,imap,iis service to the third party ssl certificate??)
0
Comment
Question by:6300ac
  • 7
  • 5
12 Comments
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590556
Does your SSL certificate work in OWA from Internet Explorer? Does OWA work on the iPad in Safari?

If you have installed the purchased SSL certificate then you shouldn't need the self generated one. Did you buy a SAN SSL cert?
0
 

Author Comment

by:6300ac
ID: 36590587
yes it works , owa works both from outside computers and ipad safari..thanks..can i remove the other certificate??
0
 

Author Comment

by:6300ac
ID: 36590598
but ipad is not connecting via exchange active sync..and also if i want to download emails via pop3 or imap4 service it is asking for network password again but cant go any further to download emails from outside..
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590604
You should be fine to remove the old certificate if the new one has been installed.
0
 

Author Comment

by:6300ac
ID: 36590620
but the old one is from the server it self...if i remove that old one should i assign all the service to the new one?? (the mail.mydomain.co.uk, 3rd party...)
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590626
You can assign the services before you delete, if you assign the services to the new one you don't need to delete the old certificate it will just sit there doing nothing. I would suggest that over the delete.
0
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

 

Author Comment

by:6300ac
ID: 36590657
it is asking to overwrite certificate yes or yes to all etc message when i assigning all services to the new certificate..should i tell yes to all??
0
 
LVL 10

Accepted Solution

by:
ThorinO earned 500 total points
ID: 36590667
Correct, once you do that the new trusted cert will be used instead of the self generated one. Assuming all the values are correct on the new cert then all should go well. I would run the same exchangeconnectivity test you did before once you make the change as well as OWA and the iPad connection.
0
 

Author Comment

by:6300ac
ID: 36590685
cant remove the smtp service from the old one??
0
 
LVL 10

Expert Comment

by:ThorinO
ID: 36590712
You should be able to assign all services, please see the following: http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm
0
 

Author Comment

by:6300ac
ID: 36590739
Yes i did that,sitll ...

when i open outlook on lan there is a message that remote.mydomain.co.uk ----
the name on the cerificate is invalid..
0
 

Author Comment

by:6300ac
ID: 36590742
it is a security alert..
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now