Solved

SBS2011 self-signed certificate

Posted on 2013-05-30
3
1,231 Views
Last Modified: 2013-06-14
The self-signed certicate on my Windows SBS2008 server expired. I went to the SBS2011 standard console, and ran the Web Server Certicate" - "fix my network" which renewed the certificate for two more years. I load the certificate to my own PC (in about 6 different places), but when I connect to the remote web workplace, and try to login I get the following error message:

This computer can't verify the identity of the RD Gateway "remote.DomainName.com". It's not safe to connect to servers that can't be identified. Contact your network administrator for assistance.
Issued to: remote.DomainName.com
Issued by: DomainName-SRVRICESTEELE01-CA
Valid from 28/5/2013->27/5/2015
Windows does not have enough information to verify this certificate.
The issuer of this certificate could not be found.

Would anyone know how to re-issue and use the certificate properly?
0
Comment
Question by:BSRIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 39

Accepted Solution

by:
Philip Elder earned 150 total points
ID: 39208460
Not the answer you are looking for but: GoDaddy certificates can be had for a song (search results can yield $13/Year).

Go with third party. Self-issued is painful to manage and with new deskop operating systems coming out a lot more frequently, may not yield the expected import results.

If you decide to go ahead with GD, make sure to import the gd_cross and _intermediate certificates into the Intermediate Trusted Authorities store on SBS (Start --> SBS Native Tools --> Certificates --> R.Click on Intermediate and IMPORT).

EDIT: Import the intermediates BEFORE running the Third Party Trusted Certificates wizard to generate the CSR and then import the GD cert.

Philip
0
 

Author Comment

by:BSRIT
ID: 39208751
OK, thanks, I think you're right.
Had already thought about switching from self-signed to 3rd party from now on, but thought I'd check here first if there was a quick solution to the self-signed problem I was having.
0
 
LVL 39

Expert Comment

by:Philip Elder
ID: 39208907
Self-Issued certificates never seemed to be "quick" when it came to fixing problems. :)

Philip
0

Featured Post

Increase Agility with Enabled Toolchains

Connect your existing build, deployment, management, monitoring, and collaboration platforms. From Puppet to Chef, HipChat to Slack, ServiceNow to JIRA, Splunk to New Relic and beyond, hand off data between systems to engage the right people.

Connect with xMatters.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've often see, or have been asked, the question about the difference between the Exchange 2010 SP1 version, available as part of Small Business Server (SBS) 2011, and the “normal” Exchange 2010 SP1 Standard. The answer to the question is relativ…
Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question