?
Solved

SBS2011 random certificate error once a day at midday

Posted on 2012-04-12
5
Medium Priority
?
634 Views
Last Modified: 2012-04-30
I recently did a sbs2003 to sbs2011 migration that went well but had the default remote.domain.com settings in the self cert owa etc. I changed that to reflect the external DNS setup and installed a bout SANS UCC cert which works a treat apart from once a day I get a SSL cert error on the outlook 2010 clients at around luch time, Ive been through all of the settings on the GUI and also changed the ones from the command line. Initially I was getting 2 of these as you opened outlook and these are now sorted but this last one that pops up at lunchtime is eluding me. Any ideas where it might be coming from??
0
Comment
Question by:plug1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 6

Assisted Solution

by:jaredr80
jaredr80 earned 750 total points
ID: 37839723
How was this cert added to your system? Because this is an SBS install extra care is needed to be taken when installing a cert. All certs should be installed via the SBS console. By failing to do this, issues likes you are observing can and will occur.

My recommendation would be to delete the cert and re-add through SBS console, network|connectivity.

-Jared
0
 
LVL 10

Expert Comment

by:millardjk
ID: 37845585
Check your cert to make sure the correct SAN records are present. The fact that you get these errors on a time-based frequency suggests something else all together, but 99% of the time I see certificate errors related to Exchange 2007 and 2010, it's because the SAN for autodiscover.mydomain.com wasn't properly added.
0
 
LVL 14

Author Comment

by:plug1
ID: 37845782
Jared, your right I didnt use the wizard, I wish I had done and I'll try and re-add it. Millard all records are present and correct.
0
 
LVL 14

Accepted Solution

by:
plug1 earned 0 total points
ID: 37892288
I found the rogue URL entry on the server, unfortunately I cant remember where it was but suffice to say if you go through every element in the EMC you will find them all.
0
 
LVL 14

Author Closing Comment

by:plug1
ID: 37909654
I found the solution myself but accept that jaredr80 is right in what he says.
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
In-place Upgrading Dirsync to Azure AD Connect
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question