• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 469
  • Last Modified:

SSL Exchange Certificate using old cert

Hi, please can you help with a certificate issue.

SBS2011 Server, Exchange 2010, up and running with about 15 clients working fine.
Original Certifcates generated by the SBS installation all working and within date.

Customer wanted an SSL certificate primary to utilise Outlook Anywhere.
Bought GoDaddy SSL with main name as remote.domain.co.uk with autodiscover as an additional name.

Loaded as per Godaddys instructions, no errors and certificate is visible. BUT on accessing remote.domain.co.uk the client machines are still picking up remote certificate generated by the server NOT the godaddy cert.

QUESTION, can I just remove the system generated cetificates leaving just the godaddy cert so that the client machine must default to the proper SSL?

Hope that makes sense, PICTURE ATTACHED, the top certificate is the godaddy cert the two below it were generated by the sbs server.
0
Insideview
Asked:
Insideview
1 Solution
 
David AtkinIT ProfessionalCommented:
Hello,

Follow the steps in this article:

http://technet.microsoft.com/en-us/library/cc546470.aspx

This will replace the self signed certificate in Exchange and IIS.
0
 
InsideviewM.D.Author Commented:
-scorpeo-

the example shown covers exporting cert from a different server, then importing, then To run the Add a Trusted Certificate Wizard

as the certificate is already on the ONLY server do I just follow the last bit of your post - To run the Add a Trusted Certificate Wizard?
0
 
David AtkinIT ProfessionalCommented:
Yes, providing that the certificate is already on the server as per the article then you will just need to run the add cert wizard from the SBS console.

This should replace the certificate.
0
 
hecgomrecCommented:
Outlook remote site should have the certificate allocated to it on IIS then restart IIS and the site.

You can still leave the self-signed certificate on the server to use internally is you may but have to assign the new one to the Outlook site on IIS and bind it to the SSL Port you are going to use.

Good Luck
0
 
Cris HannaCommented:
One of the MS SBS Program managers wrote a blog on this very topic
http://sbs.seandaniel.com/2009/02/installing-godaddy-standard-ssl.html
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now