Solved

SSL Exchange Certificate using old cert

Posted on 2013-10-28
5
457 Views
Last Modified: 2013-11-12
Hi, please can you help with a certificate issue.

SBS2011 Server, Exchange 2010, up and running with about 15 clients working fine.
Original Certifcates generated by the SBS installation all working and within date.

Customer wanted an SSL certificate primary to utilise Outlook Anywhere.
Bought GoDaddy SSL with main name as remote.domain.co.uk with autodiscover as an additional name.

Loaded as per Godaddys instructions, no errors and certificate is visible. BUT on accessing remote.domain.co.uk the client machines are still picking up remote certificate generated by the server NOT the godaddy cert.

QUESTION, can I just remove the system generated cetificates leaving just the godaddy cert so that the client machine must default to the proper SSL?

Hope that makes sense, PICTURE ATTACHED, the top certificate is the godaddy cert the two below it were generated by the sbs server.
0
Comment
Question by:Insideview
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 22

Expert Comment

by:David Atkin
ID: 39605147
Hello,

Follow the steps in this article:

http://technet.microsoft.com/en-us/library/cc546470.aspx

This will replace the self signed certificate in Exchange and IIS.
0
 

Author Comment

by:Insideview
ID: 39605184
-scorpeo-

the example shown covers exporting cert from a different server, then importing, then To run the Add a Trusted Certificate Wizard

as the certificate is already on the ONLY server do I just follow the last bit of your post - To run the Add a Trusted Certificate Wizard?
0
 
LVL 22

Expert Comment

by:David Atkin
ID: 39605190
Yes, providing that the certificate is already on the server as per the article then you will just need to run the add cert wizard from the SBS console.

This should replace the certificate.
0
 
LVL 11

Accepted Solution

by:
hecgomrec earned 500 total points
ID: 39608803
Outlook remote site should have the certificate allocated to it on IIS then restart IIS and the site.

You can still leave the self-signed certificate on the server to use internally is you may but have to assign the new one to the Outlook site on IIS and bind it to the SSL Port you are going to use.

Good Luck
0
 
LVL 35

Expert Comment

by:Cris Hanna
ID: 39609919
One of the MS SBS Program managers wrote a blog on this very topic
http://sbs.seandaniel.com/2009/02/installing-godaddy-standard-ssl.html
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
This video discusses moving either the default database or any database to a new volume.

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question