Solved

Problem with Exchange 2007 certificate

Posted on 2013-01-23
4
516 Views
Last Modified: 2013-01-24
Hi

I have an Exchange 2007 that is running a Godaddy certificate for over one year now.
Last week I had to play with the smart host and somehow the users had hard time sending email out. So since this is a SBS I run the smarthost wizard and set it not to use a specifc smart host and also I run the email domain wizard and it told me that there is already a godady certificate and if I continue it will be overwrite by the self sign one.
So I said Ok because I knew that I will install the godaddy back after I'm done.
So after Install it to SMTP, IIS, POP, etc... I reboot the server and when I go to https://mail.domain.com/owa everything works like a charm.
But when users open Outlook they keep getting a certificate error saying that the certificate name does not match. It show remote.domain.com instead of mail.domain./com.
I looked under Details on the certificate error and it show an exclamation mark at Basic Constrains and Key Usage.
I did change on the connectors the name from remote to mail and I restart all the services but still show that error.
Any idea what I'm missing here.
0
Comment
Question by:infedonetwork
  • 2
  • 2
4 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38812173
You shouldn't have changed the connectors to begin with. If you have an SSL certificate for remote.example.com then switch everything to that, including your MX record.

Did you run the SSL wizard in SBS to reinstall the SSL certificate?

Simon.
0
 
LVL 2

Author Comment

by:infedonetwork
ID: 38812194
The SSL is not for remote. but for mail.example.com
It works with that certificate for over a year.
Yes I run the SSL wizard in SBS for for some reason the only certificate on the list is the remote one not the mail one.
How can I get the mail one on that list?
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 38812550
SBS wants to use remote.example.com for everything, and it is strongly recommended to use that format. If you want to change it then the first thing you have to do is run the Internet Domain Name Wizard and change it to mail.example.com.
Then when you run the SSL wizard it will allow you to choose it. The wizard only shows SSL certificates that are available for the host name configured within the server.

Simon.
0
 
LVL 2

Author Closing Comment

by:infedonetwork
ID: 38813378
That work perfect. Thank you.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now