Solved

We've installed an updated security certificate on our exchange server 2010 but our users are still getting the "security certificate has expired..." when they open their outlook clients on their PCs

Posted on 2013-01-02

2 solutions

3,287 Views

Last Modified: 2013-12-02

Hi there,

Our SSL security certificate for our mail domain had expired and we went ahead and purchased a new SSL certificate for our exchange 2010 server from go daddy. I went ahead and downloaded the certificate and installed it following go daddy's instructions for exchange 2010. The installation procedure looked like it was completed successfully however our users are still getting the "security certificate expired..." on the outlook 2010 clients on their machines. Is there anyway I can troubleshoot this and determine why the outlook clients aren't seeing the new certificate I installed for our exchange 2010 server?

Thanks.

Comment

Question by:cllocc

[X]

Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

Help others & share knowledge
Earn cash & points
Learn & ask questions

Join The Community

7 Comments

LVL 19

Accepted Solution

by:R--R

R--R earned 250 total points

ID: 387379292013-01-02

Did you enabled the POP,IMAP,SMTP,IIS
services on certificate.

LVL 43

Expert Comment

by:Amit

ID: 387379422013-01-02

As mentioned above you need to enable it. Steps are here
http://technet.microsoft.com/en-us/library/aa997231.aspx

LVL 8

Assisted Solution

by:teomcam

teomcam earned 250 total points

ID: 387379752013-01-02

If youn are using ISA or TMG, you also need to use same certioficate on the listener. In addition as previous answerers sadi you need to enable your new certificate for the services IIS, IMAP, SMTP from EMC.

Author Comment

by:cllocc

ID: 387380552013-01-02

When I select the following services for the cert: POP,IMAP,SMTP,IIS

I get the following message pop up while the wizard is assigning the services:
"Do you want to enforce SSL communication on the root website? if not, rerun the cmdlet with the -DoNotRequireSSL parameter"

Should I click Yes, yes to all, no or cancel at this point? I'm not sure what this message is referring to...

Author Comment

by:cllocc

ID: 387381612013-01-02

I went ahead and clicked yes on the message and the wizard reported that everything completed successfully. I tested out outlook clients and it seems the expired certificate notice no longer appears. Looks like we are all set, thanks for all the help

LVL 8

Expert Comment

by:teomcam

ID: 387388052013-01-02

No need to say click yes anymore as you already done that :)

Author Closing Comment

by:cllocc

ID: 387406302013-01-03

Thanks for the help.

Featured Post

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

What makes a professional email signature?

Article by: Exclaimer

Find out what you should include to make the best professional email signature for your organization.

Exchange 2010: Fix for an Invalid certificate and related issues

Article by: ☠MAS☠

This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…

Exchange 2013: Creating a Mailbox Database

Video by: Gareth

In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…

Basics of Database Availability Groups (Part 1)

Video by: Tej Pratap

In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…