Exchange 2010 SSL Certificates

I have an SBS 2011 server. I have used the Exchange Management Console to generate an SSL request and followed the Microsoft guidelines. I have rekeyed my existing SSL Cert and imported it into the server.
My Outlook 2010 clients are still getting certificate errors when logging on however. OWA works and Outlook Anywhere works for external users.
There are several Certificates in the Exchange Console now. Is it safe to remove any of them? I am going to reboot in about 1.5 hrs if that will make any difference.

Thanks.
LVL 12
nealerocksAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Suliman Abu KharroubConnect With a Mentor IT Consultant Commented:
Please try to re-assign services to the certificate from EMC.
0
 
uescompCommented:
I guess it depends on what has all been included in the cert, did you include your sbs, and sbs.local etc?
0
 
nealerocksAuthor Commented:
I included all the required names as far as I know. The Exchange Wizard seemed to cover everything.
I have got:

mail.domain.com.au
mail.domain.local
autodiscover.domain.com.au
autodiscover.local
servername.local
servername.domain.com.au
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Suliman Abu KharroubIT Consultant Commented:
>>There are several Certificates in the Exchange Console now. Is it safe to remove any of them? I am going to reboot in about 1.5 hrs if that will make any difference.

Yes it is safe, but it is butter to take a backup of them.

Please update us if reboot does not help.
0
 
nealerocksAuthor Commented:
Reboot didn't help. Users still got the error message.
0
 
nealerocksAuthor Commented:
Reassigned services. Not all users are getting the error message.
It seems not all of them were getting it anyway. Just a few.
0
 
Suliman Abu KharroubIT Consultant Commented:
Try to recreate the outlook profile for one of the affected users.
0
 
nealerocksAuthor Commented:
Tried creating a new profile for an affected user and the cert error appeared as the account was being set up. It appeared again when I opened Outlook for the first time.
Any other ideas??

Thanks.
0
 
Suliman Abu KharroubIT Consultant Commented:
What does the error message show ? name mismatch ?

also please click on the view certificate, does it show the correct certificate ?
0
 
nealerocksAuthor Commented:
It shows name mismatch, but I have included at least 5 names on the certificate. Outlook works fine, it is just annoying. Outlook Anywhere works fine also, and there are no certificate errors on OWA.
When I view the cert it looks fine, the issuer is correct.
0
 
Suliman Abu KharroubIT Consultant Commented:
On the top left of the error message, it will show the name of the server which is try to connect to.

what is it ?
0
 
nealerocksAuthor Commented:
The server name is mail.domainname.local
0
 
Suliman Abu KharroubIT Consultant Commented:
what is mail.domainname.local ? is it the local server name ?
0
 
nealerocksAuthor Commented:
It is the domain name. The name on the certificate is mail.thecompaniesdomainname.com.au
0
 
Suliman Abu KharroubIT Consultant Commented:
are you sure you internal domain is mail.domainname.local ?

hold on shift key and right click on outlook icon in notifications area, connection status. where is outlook connected, to mail.domainname.local  ?
0
 
nealerocksAuthor Commented:
the internal domain is just mydomainname.local.
the certificate common name is the external domain name which includes mail
0
 
Suliman Abu KharroubIT Consultant Commented:
the second question please,,, outlook part.
0
 
nealerocksAuthor Commented:
Looks like the client is connecting to mail.mydomain.local
0
 
Suliman Abu KharroubIT Consultant Commented:
TCP or http/s ?
0
 
nealerocksAuthor Commented:
I have managed to resolve the issue. We had the wrong kind of SSL certificate. It wasn't a UCC. I have purchased the correct cert and ran the SBS wizards again and it is working.
No more error messages.
Thanks for all the help and suggestions!
0
 
Suliman Abu KharroubIT Consultant Commented:
LOL,

You are welcome!
0
 
nealerocksAuthor Commented:
You deserve some points for sticking with the question so long.
Thanks!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.