Solved

SBS2011 random certificate error once a day at midday

Posted on 2012-04-12
5
622 Views
Last Modified: 2012-04-30
I recently did a sbs2003 to sbs2011 migration that went well but had the default remote.domain.com settings in the self cert owa etc. I changed that to reflect the external DNS setup and installed a bout SANS UCC cert which works a treat apart from once a day I get a SSL cert error on the outlook 2010 clients at around luch time, Ive been through all of the settings on the GUI and also changed the ones from the command line. Initially I was getting 2 of these as you opened outlook and these are now sorted but this last one that pops up at lunchtime is eluding me. Any ideas where it might be coming from??
0
Comment
Question by:plug1
  • 3
5 Comments
 
LVL 6

Assisted Solution

by:jaredr80
jaredr80 earned 250 total points
ID: 37839723
How was this cert added to your system? Because this is an SBS install extra care is needed to be taken when installing a cert. All certs should be installed via the SBS console. By failing to do this, issues likes you are observing can and will occur.

My recommendation would be to delete the cert and re-add through SBS console, network|connectivity.

-Jared
0
 
LVL 10

Expert Comment

by:millardjk
ID: 37845585
Check your cert to make sure the correct SAN records are present. The fact that you get these errors on a time-based frequency suggests something else all together, but 99% of the time I see certificate errors related to Exchange 2007 and 2010, it's because the SAN for autodiscover.mydomain.com wasn't properly added.
0
 
LVL 14

Author Comment

by:plug1
ID: 37845782
Jared, your right I didnt use the wizard, I wish I had done and I'll try and re-add it. Millard all records are present and correct.
0
 
LVL 14

Accepted Solution

by:
plug1 earned 0 total points
ID: 37892288
I found the rogue URL entry on the server, unfortunately I cant remember where it was but suffice to say if you go through every element in the EMC you will find them all.
0
 
LVL 14

Author Closing Comment

by:plug1
ID: 37909654
I found the solution myself but accept that jaredr80 is right in what he says.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

822 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question