Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Renew of trusted GoDaddy single SSL cert in Win SBS 2008 Exchnage 2007 SP3

Posted on 2013-05-21
9
Medium Priority
?
534 Views
Last Modified: 2013-05-26
Hi!

I have a Win SBS 2008 server with Exchange 2007 SP3. The GoDaddy single SSL cert that I use for OWA/ActiveSync is up for renewal. I bought a 3 y renewal from GoDaddy and now I need to get a CSR-request issued from my server. Have been trying to get this working using EMS and new-exchangecertificate cmdlet

EMS output error from New-Exchangecertificate cmdlet
I get an error and can't get it to work!

Regards
Mats
0
Comment
Question by:AfftekData
  • 5
  • 3
9 Comments
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183710
It looks like a required value is not set.  Try adding -DomainName yourdomain.com to the command.
0
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183711
Failing the above, run mmc and add the certificates snap in and try creating a custom request there.  Don't forget to mark the private key as exportable if required.
0
 
LVL 15

Expert Comment

by:Skyler Kincaid
ID: 39183886
Use this tool to generate the CSR command:

https://www.digicert.com/easy-csr/exchange2010.htm

You will have to edit the part of the command that has the location for it to save the text file. That is what we use and it works great.
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 

Author Comment

by:AfftekData
ID: 39183895
I've tried the first solution to add -DomainName with no luck...
I used the digicert SCR command... No luck

Need more info on how to get the MMC solution to work. A more setp by step guide.

The Exchange server is updated to SP3 without any Rollup. Tried to install RU10, but got an error saying that I need at least Exchange server Administrator permission... I already got that... ? Note that this is a Win SBS 2008 (SWE GUI)

/Mats
0
 
LVL 3

Expert Comment

by:Cooker85
ID: 39183907
Click Start, click Run, type mmc and then click OK.
In MMC, goto file add/remove snap in and find certificates and click on add and then OK.  Make sure you use computer account, not the user account.
expand Certificates - Current User, and then expand Personal.
In the right pane, right-click and point to All tasks, and then Advanced Operations and Create custom request.

You can pretty much follow the wizard from there.  Make sure you set the key size to 2048 as by default its only 1024 which most places wont accept now.  Good luck!
0
 

Author Comment

by:AfftekData
ID: 39184040
Are you sure...? Should I create a request under Current User Personal ... Not ander Local Computer - Personal - certificate? This is where I can see my current cert.

I tried it, but don't get any question about size 2048 or whwre to enter any info about domain name and so on... Is this really the right way?
0
 

Author Comment

by:AfftekData
ID: 39184055
Checked my Powershell version : 3.0... Is it compatible with SBS 2008 and Exch 2007? Could that be the problem? Can I downgrade it?
0
 

Accepted Solution

by:
AfftekData earned 0 total points
ID: 39184239
Uninstalling Win Management Framework 3.0 KB2506146 made the trick and reverted Powershell to 2.0 and now my new-exchangecertificate cmd works again!!!
0
 

Author Closing Comment

by:AfftekData
ID: 39197427
Thanks for looking in to my issue even if we found it out ourselves!
0

Featured Post

Configuration Guide and Best Practices

Read the guide to learn how to orchestrate Data ONTAP, create application-consistent backups and enable fast recovery from NetApp storage snapshots. Version 9.5 also contains performance and scalability enhancements to meet the needs of the largest enterprise environments.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
Suggested Courses

824 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question