Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 532
  • Last Modified:

Problem with Exchange 2007 certificate

Hi

I have an Exchange 2007 that is running a Godaddy certificate for over one year now.
Last week I had to play with the smart host and somehow the users had hard time sending email out. So since this is a SBS I run the smarthost wizard and set it not to use a specifc smart host and also I run the email domain wizard and it told me that there is already a godady certificate and if I continue it will be overwrite by the self sign one.
So I said Ok because I knew that I will install the godaddy back after I'm done.
So after Install it to SMTP, IIS, POP, etc... I reboot the server and when I go to https://mail.domain.com/owa everything works like a charm.
But when users open Outlook they keep getting a certificate error saying that the certificate name does not match. It show remote.domain.com instead of mail.domain./com.
I looked under Details on the certificate error and it show an exclamation mark at Basic Constrains and Key Usage.
I did change on the connectors the name from remote to mail and I restart all the services but still show that error.
Any idea what I'm missing here.
0
infedonetwork
Asked:
infedonetwork
  • 2
  • 2
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
You shouldn't have changed the connectors to begin with. If you have an SSL certificate for remote.example.com then switch everything to that, including your MX record.

Did you run the SSL wizard in SBS to reinstall the SSL certificate?

Simon.
0
 
infedonetworkAuthor Commented:
The SSL is not for remote. but for mail.example.com
It works with that certificate for over a year.
Yes I run the SSL wizard in SBS for for some reason the only certificate on the list is the remote one not the mail one.
How can I get the mail one on that list?
0
 
Simon Butler (Sembee)ConsultantCommented:
SBS wants to use remote.example.com for everything, and it is strongly recommended to use that format. If you want to change it then the first thing you have to do is run the Internet Domain Name Wizard and change it to mail.example.com.
Then when you run the SSL wizard it will allow you to choose it. The wizard only shows SSL certificates that are available for the host name configured within the server.

Simon.
0
 
infedonetworkAuthor Commented:
That work perfect. Thank you.
0

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now