Solved

SBS2011 self-signed certificate

Posted on 2013-05-30
3
1,196 Views
Last Modified: 2013-06-14
The self-signed certicate on my Windows SBS2008 server expired. I went to the SBS2011 standard console, and ran the Web Server Certicate" - "fix my network" which renewed the certificate for two more years. I load the certificate to my own PC (in about 6 different places), but when I connect to the remote web workplace, and try to login I get the following error message:

This computer can't verify the identity of the RD Gateway "remote.DomainName.com". It's not safe to connect to servers that can't be identified. Contact your network administrator for assistance.
Issued to: remote.DomainName.com
Issued by: DomainName-SRVRICESTEELE01-CA
Valid from 28/5/2013->27/5/2015
Windows does not have enough information to verify this certificate.
The issuer of this certificate could not be found.

Would anyone know how to re-issue and use the certificate properly?
0
Comment
Question by:BSRIT
  • 2
3 Comments
 
LVL 38

Accepted Solution

by:
Philip Elder earned 150 total points
ID: 39208460
Not the answer you are looking for but: GoDaddy certificates can be had for a song (search results can yield $13/Year).

Go with third party. Self-issued is painful to manage and with new deskop operating systems coming out a lot more frequently, may not yield the expected import results.

If you decide to go ahead with GD, make sure to import the gd_cross and _intermediate certificates into the Intermediate Trusted Authorities store on SBS (Start --> SBS Native Tools --> Certificates --> R.Click on Intermediate and IMPORT).

EDIT: Import the intermediates BEFORE running the Third Party Trusted Certificates wizard to generate the CSR and then import the GD cert.

Philip
0
 

Author Comment

by:BSRIT
ID: 39208751
OK, thanks, I think you're right.
Had already thought about switching from self-signed to 3rd party from now on, but thought I'd check here first if there was a quick solution to the self-signed problem I was having.
0
 
LVL 38

Expert Comment

by:Philip Elder
ID: 39208907
Self-Issued certificates never seemed to be "quick" when it came to fixing problems. :)

Philip
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

The problem of the system drive in SBS 2003 getting full continues to be an issue, even though SBS 2008 and SBS 2011 are both in the market place.  There are several solutions to this, including adding additional drive space or using third party uti…
The articles for turning off the Client firewall policy on the internet are for SBS 2008 and don't really help for SBS 2011. They actually moved the Client firewall policy. In 2011, the client firewall policy has moved to the SBS computers conta…
This video discusses moving either the default database or any database to a new volume.
This tutorial demonstrates a quick way of adding group price to multiple Magento products.

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now