Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1273
  • Last Modified:

SBS2011 self-signed certificate

The self-signed certicate on my Windows SBS2008 server expired. I went to the SBS2011 standard console, and ran the Web Server Certicate" - "fix my network" which renewed the certificate for two more years. I load the certificate to my own PC (in about 6 different places), but when I connect to the remote web workplace, and try to login I get the following error message:

This computer can't verify the identity of the RD Gateway "remote.DomainName.com". It's not safe to connect to servers that can't be identified. Contact your network administrator for assistance.
Issued to: remote.DomainName.com
Issued by: DomainName-SRVRICESTEELE01-CA
Valid from 28/5/2013->27/5/2015
Windows does not have enough information to verify this certificate.
The issuer of this certificate could not be found.

Would anyone know how to re-issue and use the certificate properly?
0
BSRIT
Asked:
BSRIT
  • 2
1 Solution
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Not the answer you are looking for but: GoDaddy certificates can be had for a song (search results can yield $13/Year).

Go with third party. Self-issued is painful to manage and with new deskop operating systems coming out a lot more frequently, may not yield the expected import results.

If you decide to go ahead with GD, make sure to import the gd_cross and _intermediate certificates into the Intermediate Trusted Authorities store on SBS (Start --> SBS Native Tools --> Certificates --> R.Click on Intermediate and IMPORT).

EDIT: Import the intermediates BEFORE running the Third Party Trusted Certificates wizard to generate the CSR and then import the GD cert.

Philip
0
 
BSRITAuthor Commented:
OK, thanks, I think you're right.
Had already thought about switching from self-signed to 3rd party from now on, but thought I'd check here first if there was a quick solution to the self-signed problem I was having.
0
 
Philip ElderTechnical Architect - HA/Compute/StorageCommented:
Self-Issued certificates never seemed to be "quick" when it came to fixing problems. :)

Philip
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now