Solved

Problem with Exchange 2007 certificate

Posted on 2013-01-23
4
525 Views
Last Modified: 2013-01-24
Hi

I have an Exchange 2007 that is running a Godaddy certificate for over one year now.
Last week I had to play with the smart host and somehow the users had hard time sending email out. So since this is a SBS I run the smarthost wizard and set it not to use a specifc smart host and also I run the email domain wizard and it told me that there is already a godady certificate and if I continue it will be overwrite by the self sign one.
So I said Ok because I knew that I will install the godaddy back after I'm done.
So after Install it to SMTP, IIS, POP, etc... I reboot the server and when I go to https://mail.domain.com/owa everything works like a charm.
But when users open Outlook they keep getting a certificate error saying that the certificate name does not match. It show remote.domain.com instead of mail.domain./com.
I looked under Details on the certificate error and it show an exclamation mark at Basic Constrains and Key Usage.
I did change on the connectors the name from remote to mail and I restart all the services but still show that error.
Any idea what I'm missing here.
0
Comment
Question by:infedonetwork
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38812173
You shouldn't have changed the connectors to begin with. If you have an SSL certificate for remote.example.com then switch everything to that, including your MX record.

Did you run the SSL wizard in SBS to reinstall the SSL certificate?

Simon.
0
 
LVL 2

Author Comment

by:infedonetwork
ID: 38812194
The SSL is not for remote. but for mail.example.com
It works with that certificate for over a year.
Yes I run the SSL wizard in SBS for for some reason the only certificate on the list is the remote one not the mail one.
How can I get the mail one on that list?
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 38812550
SBS wants to use remote.example.com for everything, and it is strongly recommended to use that format. If you want to change it then the first thing you have to do is run the Internet Domain Name Wizard and change it to mail.example.com.
Then when you run the SSL wizard it will allow you to choose it. The wizard only shows SSL certificates that are available for the host name configured within the server.

Simon.
0
 
LVL 2

Author Closing Comment

by:infedonetwork
ID: 38813378
That work perfect. Thank you.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
Find out what you should include to make the best professional email signature for your organization.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question