SBS Server 2008 R2 certificate problems

Posted on 2013-01-12
Medium Priority
Last Modified: 2013-04-26
I have a SBS Server 2008 R2 that has an expired certificate.  Every time one of the users logs into their 2010 Outlook it gives them the error attached.  I have followed online guides to create a new self signed certificate using comandlets in the power shell prompt but I keep getting an error that is telling me there is no such command.  This is one of the commandlets that I have run: Get-ExchangeCertificate | List.  I am running Exchange server 2007 which was configured during the installation process.  As was the original self signed certificate.  Any help would be much appreciated.
Question by:Camelroo75
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 38770777
Make sure that you are running the cmdlet from exchange management shell not windows power shell.

Author Comment

ID: 38772843
I have figured that out.  I now have a new Exchange certificate but now the error message is telling me that "the name on the security certificate is invalid or does not match the name of the site when I try and access Outlook 2010 on a client machine.
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38774978
The version of SBS that you have posted doesn't exist.
Either you have SBS 2008 or SBS 2011. The only variant that is at R2 level is 2003.

As this is SBS, the quickest way to resolve is to run the wizard to configure you internet name. That will generate a new certificate and put it in the correct place.
Ideally you should be using a commercial SSL certificate which would deal with the issues completely and costs $60/year.

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI


Author Comment

ID: 38775309
My appologies I have SBS 2008 Service Pack 2.  I don't feel that a SSL certificate is the right way to go since Exchange is only used for local domain access.  What wizard are you speaking of?
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38782612
On the Network config in the SBS tool, under Connectivy is Set up your Internet Address. Run that wizard again (you don't have to change anything).


Author Comment

ID: 38784196

Running through that wizard it is wanting me to setup Exchange for external e-mail.  This is a small business that uses Exchange to share calendars and inter-office e-mail that is all so this won't work for me.


Author Comment

ID: 38784307
This is one of the commands that I am having trouble with.

3.Change the InternalUrl attribute of the EWS. To do this, type the following command, and then press Enter:

Set-WebServicesVirtualDirectory -Identity "CAS_Server_Name\EWS (Default Web Site)" -InternalUrl https://mail.contoso.com/ews/exchange.asmx

This is from a Microsoft knowledge base in reference on how to fix my existing problem.


The problem is no matter what I put in for the ews it always give me an error and says that it doesn't exist.  Am I to take this command literally and type it exactly as it reads minus the name of my server?  Of course what I want the InternalUrl to be also.
LVL 63

Accepted Solution

Simon Butler (Sembee) earned 2000 total points
ID: 38785212
That is because SBS doesn't use the default web site for the web services for Exchange, it uses another one. If you run get-webservicesvirtualdirectory then you will see what is listed.

Exchange should really be used for all email, trying to use it for just some will usually cause you problems, with email going where it shouldn't for example.


Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Outlook for dependable use in a very small business   This article is about using the Outlook application (part of Microsoft Office) in a very small business, or for homeowners where dependability and reliability are critical requirements. This …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question