Link to home
Start Free TrialLog in
Avatar of KTM200

asked on

Rouge Exchange 2010 Certificate

HI All, Please could any help me with this problem, i have inherited a site with a SBS2011 server which was migrated from a SBS2008 server by a previous service provider.

All pretty standard with a self signed certificate and all was working fine, Outlook autodiscover finds the server, no problems.

After about a week, some of the users get a Autodiscover certificate error pop up with certificate error, when i look at the certificate it has not relationship with the server or network or Exchange and expired in 2006 see the screen shots:

User generated image
User generated image

I have no idea where this certificate is or why its on the network, i cannot find it on the server, Exchange only shows the self signed certificate.

Please could somebody give me any suggestions as to how i can find this rouge certificate and remove it and restore the default Exchange 2010 Autodiscover Certificate details, ive run out of ideas here

Much appreciated
Avatar of Simon Butler (Sembee)
Simon Butler (Sembee)
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Mohd_Shaikh


Let me know first, is that this * is using.

If you are not using that certificate, then remove it.

About this set as default, then add into trust

Go to mmc --- Add certificate --- import it in Trusted Root Certification Authorities, Intermediate certification Authorities and personal.

Restart MS Transport service for the changes to take effect.

Avatar of KTM200


Hi Mohd_Shaikh,

The problem certificate is the *, the SBS2011 server has no record of this anywhere, the installed certificate is the self signed server certificate see below

User generated image
The problem is that the computers arent using this certificate and rather looking at this * certificate is a South African ISP - so as I said, it is coming from the ISP/Hosting company.