Solved

Renew of trusted GoDaddy single SSL cert in Win SBS 2008 Exchnage 2007 SP3

Posted on 2013-05-21
9
515 Views
Last Modified: 2013-05-26
Hi!

I have a Win SBS 2008 server with Exchange 2007 SP3. The GoDaddy single SSL cert that I use for OWA/ActiveSync is up for renewal. I bought a 3 y renewal from GoDaddy and now I need to get a CSR-request issued from my server. Have been trying to get this working using EMS and new-exchangecertificate cmdlet

EMS output error from New-Exchangecertificate cmdlet
I get an error and can't get it to work!

Regards
Mats
0
Comment
Question by:AfftekData
  • 5
  • 3
9 Comments
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183710
It looks like a required value is not set.  Try adding -DomainName yourdomain.com to the command.
0
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183711
Failing the above, run mmc and add the certificates snap in and try creating a custom request there.  Don't forget to mark the private key as exportable if required.
0
 
LVL 15

Expert Comment

by:Skyler Kincaid
ID: 39183886
Use this tool to generate the CSR command:

https://www.digicert.com/easy-csr/exchange2010.htm

You will have to edit the part of the command that has the location for it to save the text file. That is what we use and it works great.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:AfftekData
ID: 39183895
I've tried the first solution to add -DomainName with no luck...
I used the digicert SCR command... No luck

Need more info on how to get the MMC solution to work. A more setp by step guide.

The Exchange server is updated to SP3 without any Rollup. Tried to install RU10, but got an error saying that I need at least Exchange server Administrator permission... I already got that... ? Note that this is a Win SBS 2008 (SWE GUI)

/Mats
0
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183907
Click Start, click Run, type mmc and then click OK.
In MMC, goto file add/remove snap in and find certificates and click on add and then OK.  Make sure you use computer account, not the user account.
expand Certificates - Current User, and then expand Personal.
In the right pane, right-click and point to All tasks, and then Advanced Operations and Create custom request.

You can pretty much follow the wizard from there.  Make sure you set the key size to 2048 as by default its only 1024 which most places wont accept now.  Good luck!
0
 

Author Comment

by:AfftekData
ID: 39184040
Are you sure...? Should I create a request under Current User Personal ... Not ander Local Computer - Personal - certificate? This is where I can see my current cert.

I tried it, but don't get any question about size 2048 or whwre to enter any info about domain name and so on... Is this really the right way?
0
 

Author Comment

by:AfftekData
ID: 39184055
Checked my Powershell version : 3.0... Is it compatible with SBS 2008 and Exch 2007? Could that be the problem? Can I downgrade it?
0
 

Accepted Solution

by:
AfftekData earned 0 total points
ID: 39184239
Uninstalling Win Management Framework 3.0 KB2506146 made the trick and reverted Powershell to 2.0 and now my new-exchangecertificate cmd works again!!!
0
 

Author Closing Comment

by:AfftekData
ID: 39197427
Thanks for looking in to my issue even if we found it out ourselves!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question