Solved

Requesting a Godaddy Cert for TMG 2010 web listener

Posted on 2012-03-26
5
1,339 Views
Last Modified: 2012-06-22
Hello,

Here is the bind I'm in.

We have an exchange 2010 server that sits behind a TMG 2010  server.  

The certificate that we were using on the web listener on the TMG server for owa has expired.

I went ahead and bought a GoDaddy UCC certificate.  

I'm trying to figure out the correct way to request this certificate and get it installed on the web listener.  

Any advice would be greatly appreciated.

Thanks,
0
Comment
Question by:staleek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 4

Assisted Solution

by:pwnbasketz
pwnbasketz earned 250 total points
ID: 37767740
To import the certificate:

http://technet.microsoft.com/en-us/library/cc441505.aspx

I'm not sure if there's a specific folder you have to install them in or not, but ours are in the personal certificates folder.

Then to setup the certificate in TMG 2010, find the firewall policy for owa and:

Right click policy for owa
Go to properties
Click on the 'Listener' tab
In the 'Listener' tab click 'Properties...'
Click the 'Certificates' tab
Click 'Select Certificate...'
Select the cert you imported from above and click 'Select'
Click OK until you're out and that should be it
0
 

Author Comment

by:staleek
ID: 37768064
Thanks for the reply pwnbasketz

I agree that will allow me to import it into the TMG Web listener.

My main issues is getting the certificate for importing.  

From what I'm reading I will need to generate a CRS request so to get the certificate from GoDaddy.  

I don't see a way to do that from the TMG server.  I read that people do it from the exchange 2010 certificate wizard.  Then import that certificate into the exchange server.  

If that is the case am I to export the certificate and then import it into the TMG 2010 server for the web listener to use?
0
 
LVL 3

Accepted Solution

by:
cfletch1980 earned 250 total points
ID: 37768336
Yes from within the Exchange management console select Server Configuration(with that selected you will see a option on far right pane to create a new Exchange certificate request).

Once you have the CSR, you can request the certificate from GoDaddy. then you import the new certificate back within exchange and finally on your web listener on TMG that relate to the exchange services you publishing. Hope that helps
0
 
LVL 4

Expert Comment

by:pwnbasketz
ID: 37768341
That sounds right.  That was my fault on that one (i misread the question).  But yes, you should generate the CSR from the exchange server, then complete the pending request and then export the certificate.  From everything I have read up on this, Forefront just needs the final certificate imported so that it can perform the SSL bridging (which enables it to scan the packets as they come in and then forward to the destination).
0
 

Author Closing Comment

by:staleek
ID: 38007755
Sorry for the delay.
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question