cloudbase
asked on
Wildcard certificate on Exchange 2010 IMAP\POP
Hi,
I am trying to use wildcard certificate on IMAP\POP services and require some help.
I'm using the following commands:
set-imapsettings -X509CertificateName mail.domain.com
set-popsettings -X509CertificateName mail.domain.com
enable-exchangecertificate -services POP,IMAP -thumbprint
And the result is:
Warning:
This certificate with thumbprint 0A02849AA284B4DB1D1670DCA1 C6310BA724 1864 and subject '*.domain.com' cannot used for POP SSL/TLS connections because the subject is not a Fully Qualified Domain Name (FQDN). Use command Set-POPSettings to set X509CertificateName to the FQDN of the service.
Warning:
This certificate with thumbprint 0A02849AA284B4DB1D1670DCA1 C6310BA724 1864 and subject '*.domain.com' cannot used for IMAP SSL/TLS connections because the subject is not a Fully Qualified Domain Name (FQDN). Use command Set-IMAPSettings to set X509CertificateName
to the FQDN of the service.
Can you please advice?
I am trying to use wildcard certificate on IMAP\POP services and require some help.
I'm using the following commands:
set-imapsettings -X509CertificateName mail.domain.com
set-popsettings -X509CertificateName mail.domain.com
enable-exchangecertificate
And the result is:
Warning:
This certificate with thumbprint 0A02849AA284B4DB1D1670DCA1
Warning:
This certificate with thumbprint 0A02849AA284B4DB1D1670DCA1
to the FQDN of the service.
Can you please advice?
are you on service pack 1 >>>> http://support.microsoft.com/kb/948896
ASKER
Actually I'm on Exchange 2010 SP2
you get those two warnings when running the enable-exchangecertificate , right?
the thing is.. you dont need to run the enable exchangecertificate.. you just need to set the pop and imapsettings with the fqdn that the users will connect to... after you've imported the certificate. please test and post the results.
the thing is.. you dont need to run the enable exchangecertificate.. you just need to set the pop and imapsettings with the fqdn that the users will connect to... after you've imported the certificate. please test and post the results.
ASKER
Hi,
Thanks, I'm not sure that I completely understood it.
The certificate was imported and it is in use by IIS services.
The FQDN was set for pop\imap, now, I don't need to enable the certificate to have IMAP\POP with SSL?
Thanks, I'm not sure that I completely understood it.
The certificate was imported and it is in use by IIS services.
The FQDN was set for pop\imap, now, I don't need to enable the certificate to have IMAP\POP with SSL?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
none of the other solutions worked, so we bought SAN certificate.