Solved

SSL Exchange Certificate using old cert

Posted on 2013-10-28
5
453 Views
Last Modified: 2013-11-12
Hi, please can you help with a certificate issue.

SBS2011 Server, Exchange 2010, up and running with about 15 clients working fine.
Original Certifcates generated by the SBS installation all working and within date.

Customer wanted an SSL certificate primary to utilise Outlook Anywhere.
Bought GoDaddy SSL with main name as remote.domain.co.uk with autodiscover as an additional name.

Loaded as per Godaddys instructions, no errors and certificate is visible. BUT on accessing remote.domain.co.uk the client machines are still picking up remote certificate generated by the server NOT the godaddy cert.

QUESTION, can I just remove the system generated cetificates leaving just the godaddy cert so that the client machine must default to the proper SSL?

Hope that makes sense, PICTURE ATTACHED, the top certificate is the godaddy cert the two below it were generated by the sbs server.
0
Comment
Question by:Insideview
5 Comments
 
LVL 22

Expert Comment

by:David Atkin
Comment Utility
Hello,

Follow the steps in this article:

http://technet.microsoft.com/en-us/library/cc546470.aspx

This will replace the self signed certificate in Exchange and IIS.
0
 

Author Comment

by:Insideview
Comment Utility
-scorpeo-

the example shown covers exporting cert from a different server, then importing, then To run the Add a Trusted Certificate Wizard

as the certificate is already on the ONLY server do I just follow the last bit of your post - To run the Add a Trusted Certificate Wizard?
0
 
LVL 22

Expert Comment

by:David Atkin
Comment Utility
Yes, providing that the certificate is already on the server as per the article then you will just need to run the add cert wizard from the SBS console.

This should replace the certificate.
0
 
LVL 11

Accepted Solution

by:
hecgomrec earned 500 total points
Comment Utility
Outlook remote site should have the certificate allocated to it on IIS then restart IIS and the site.

You can still leave the self-signed certificate on the server to use internally is you may but have to assign the new one to the Outlook site on IIS and bind it to the SSL Port you are going to use.

Good Luck
0
 
LVL 35

Expert Comment

by:Cris Hanna
Comment Utility
One of the MS SBS Program managers wrote a blog on this very topic
http://sbs.seandaniel.com/2009/02/installing-godaddy-standard-ssl.html
0

Featured Post

Free book by J.Peter Bruzzese, Microsoft MVP

Are you using Office 365? Trying to set up email signatures but you’re struggling with transport rules and connectors? Let renowned Microsoft MVP J.Peter Bruzzese show you how in this exclusive e-book on Office 365 email signatures. Better yet, it’s free!

Join & Write a Comment

Suggested Solutions

Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now