Link to home
Start Free TrialLog in
Avatar of Neal58
Neal58Flag for United Kingdom of Great Britain and Northern Ireland

asked on

can i create a self signed certificate in SBS2008 without using the wizard?

can i create a self signed certificate in SBS2008 without using the wizard?

I ask this because the connect to the internet wizard constantly crashes, but i dont want to muck other bits of the server up.

at the moment its coming up with a certificate warning for all clients running outlook for their emails.
Avatar of tsaico
tsaico
Flag of Afghanistan image

To get rid of the warning of one type or another, you will need to import the self signed certificate into the workstations and also make sure your broadcasting the correct names internally and externally.  If it is your first time doing such things it can be a frustrating thing.  I would recommend ponying up and just buy the multi domain (90 bucks a year), from go daddy, fix the issue with the wizard, then have it configure the 5 or so spots you need it to.
yes try these commands in exchange powershell:

1. to get the thumbprint type: Get-ExchangeCertificate -domain "servername" | fl
2. thumbprint in step 1 enter in step 3.
3. type: Get-ExchangeCertificate -thumbprint "2FB28F5075EFE9B30A8F8458DED0A137629F62D7" | New-ExchangeCertificate
4. you'll confirm "overwrite existing default SMTP certificate, take the new thumbprint and enter in step 5
5. Enable-ExchangeCertificate -thumbprint "FB5AECA6B39816F 02B3245BD1D953934HD8H730F" -services IIS manually restart IIS after as well.
you won't have to do anything on the workstations, make sure when Outlook opens a cert error doesn't come up as well you can test with OWA, if the above is done correctly you won't get a cert error.
Avatar of Neal58

ASKER

actually checking what error is coming up it is:

The name of the security certificate is invalid or does not match the name of the site

I found this: http://support.microsoft.com/kb/940726 which attempts to deal with it, but i think it may be over my head a bit, can i check my FQDN or is it going to be remote.domain.com? what would my cas_servername be?
ASKER CERTIFIED SOLUTION
Avatar of Jeffrey Kane - TechSoEasy
Jeffrey Kane - TechSoEasy
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Neal58

ASKER

I've requested that this question be deleted for the following reason:

ok will close this question and open a new one for the wizard failing
The question was asked, "can i create a self signed certificate in SBS2008 without using the wizard?" and my answer was essentially, "NO".  Which is a valid answer and the question should not be deleted.

Please accept my comment http:#38013384 as the solution to this question.

Thank you!

Jeff
TechSoEasy