DL197
asked on
Exchange 2010 OWA, Activesync
Yesterday I created a self-signed certificate using my Exchange Server. I was able to install and then deleted the old expired cert and two certs with no services assigned. Outlook clients are no longer getting "expired cert" message but OWA and Activesync have quit working. Also, now I can't get to cert web enrollment site. Please help!
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
[PS] C:\Windows\system32>Get-Ex changeCert ificate | FL
AccessRules : {System.Security.AccessCon trol.Crypt oKeyAccess Rule,
ule}
CertificateDomains : {belton.local, mail.belton.local, mail.beltontexas.g
autodiscover.belton.local, autodiscover.ci.belton.tx
.beltontexas.gov, beltonpd.local, beltontexas.gov, c
s.gov}
HasPrivateKey : True
IsSelfSigned : True
Issuer : C=US, S=TX, L=Belton, O=City of Belton, OU=Belton, C
NotAfter : 4/9/2013 5:11:18 PM
NotBefore : 4/9/2012 4:51:18 PM
PublicKeySize : 2048
RootCAType : None
SerialNumber : 4657376577E2329B437E725190 4AD6D7
Services : None
Status : Valid
Subject : C=US, S=TX, L=Belton, O=City of Belton, OU=Belton, C
Thumbprint : 704B3ADA43B4FA89B254AD06F6 280A0A6D12 FB62
AccessRules : {System.Security.AccessCon trol.Crypt oKeyAccess Rule,
ule, System.Security.AccessCont rol.Crypto KeyAccessR u
CertificateDomains : {belton-CITY-EX2-CA}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=belton-CITY-EX2-CA, DC=belton, DC=local
NotAfter : 4/9/2017 3:46:37 PM
NotBefore : 4/9/2012 3:36:38 PM
PublicKeySize : 2048
RootCAType : Registry
SerialNumber : 2708CB79F0F7909648B3C2D3A7 EDBB31
Services : IMAP, IIS, SMTP
Status : Valid
Subject : CN=belton-CITY-EX2-CA, DC=belton, DC=local
Thumbprint : 71917B6EB8DBDA82FB367C201D E523D51910 30DC
AccessRules : {System.Security.AccessCon
ule}
CertificateDomains : {belton.local, mail.belton.local, mail.beltontexas.g
autodiscover.belton.local,
.beltontexas.gov, beltonpd.local, beltontexas.gov, c
s.gov}
HasPrivateKey : True
IsSelfSigned : True
Issuer : C=US, S=TX, L=Belton, O=City of Belton, OU=Belton, C
NotAfter : 4/9/2013 5:11:18 PM
NotBefore : 4/9/2012 4:51:18 PM
PublicKeySize : 2048
RootCAType : None
SerialNumber : 4657376577E2329B437E725190
Services : None
Status : Valid
Subject : C=US, S=TX, L=Belton, O=City of Belton, OU=Belton, C
Thumbprint : 704B3ADA43B4FA89B254AD06F6
AccessRules : {System.Security.AccessCon
ule, System.Security.AccessCont
CertificateDomains : {belton-CITY-EX2-CA}
HasPrivateKey : True
IsSelfSigned : True
Issuer : CN=belton-CITY-EX2-CA, DC=belton, DC=local
NotAfter : 4/9/2017 3:46:37 PM
NotBefore : 4/9/2012 3:36:38 PM
PublicKeySize : 2048
RootCAType : Registry
SerialNumber : 2708CB79F0F7909648B3C2D3A7
Services : IMAP, IIS, SMTP
Status : Valid
Subject : CN=belton-CITY-EX2-CA, DC=belton, DC=local
Thumbprint : 71917B6EB8DBDA82FB367C201D
remove the brackets from the thumb print sorry
ASKER
Command completed successfully. OWA site still doesn't come up. Neither HTTP or HTTPS...... Restarted IIS, no luck.
What shows in the IIS access logs?
ASKER
Where do I find those?
ASKER
Found them @ c:\windows\system32\errorl ogs\httper r. They are really long, not sure what I am looking for. See a lot of "Timer_ConnectionIdle" and "2012-04-10 13:51:20 ::1%0 49496 ::1%0 80 HTTP/1.1 POST /powershell?serializationL evel=Full; PSVersion= 2.0 - 1 Connection_Dropped MSExchangePowerShellAppPoo l
2012-04-10 13:51:20 ::1%0 42795 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL evel=Full; clientAppl ication=EM C;PSVersio n=2.0 - 1 Connection_Dropped MSExchangePowerShellAppPoo l
2012-04-10 13:51:20 ::1%0 42810 ::1%0 80 HTTP/1.1 POST /PowerShell?clientApplicat ion=EMC;PS Version=2. 0 - 1 Connection_Dropped MSExchangePowerShellAppPoo l
2012-04-10 13:51:20 ::1%0 42805 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL evel=Full; clientAppl ication=EM C;PSVersio n=2.0 - 1 Connection_Dropped MSExchangePowerShellAppPoo l
2012-04-10 13:51:20 ::1%0 42801 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL evel=Full; clientAppl ication=EM C;PSVersio n=2.0 - 1 Connection_Dropped MSExchangePowerShellAppPoo l"
2012-04-10 13:51:20 ::1%0 42795 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL
2012-04-10 13:51:20 ::1%0 42810 ::1%0 80 HTTP/1.1 POST /PowerShell?clientApplicat
2012-04-10 13:51:20 ::1%0 42805 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL
2012-04-10 13:51:20 ::1%0 42801 ::1%0 80 HTTP/1.1 POST /PowerShell?serializationL
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
It was the method used to solve the problem.
ASKER
Bad numeric constant: 71917.
At line:1 char:46
+ Enable-ExchangeCertificate
+ CategoryInfo : ParserError: (71917:String) [], ParentContainsErrorRecordE
+ FullyQualifiedErrorId : BadNumericConstant