Solved

SSL Cert import to Exchange 2010

Posted on 2013-11-06
4
730 Views
Last Modified: 2013-11-20
Hello,

I'm having trouble importing a 123-reg wildcard cert into a exchange 2010 server running on a Windows 2012 server, it imports the cert OK but then show its status as Pending.

When I look at the cert properties it states "This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store."

it also incorrectly states the valid from and until dates, which should be 5 years - it shows it to be only one year.

the CSR used to generate this cert was created from the Exchange management console - not from IIS, is this the correct method?

I have added the intermediate certificate provided by 123-reg.

Any advice would be greatly appreciated!
0
Comment
Question by:TopCat-007
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 

Author Comment

by:TopCat-007
ID: 39635746
unfortunately this is the process I've followed to the letter and although it initially completed without error, the cert was stuck with a status of "this is pending certificate signing request" If I try and re-import the cert I get an error that the cert already exists.

This is a wildcard certificate but that shouldn't matter as Exch 2010 support them now.

I've checked the cert issued with http://redkestrel.co.uk/products/decoder/ and they have the correct details.

help, this is very frustrating :) many thanks
0
 

Accepted Solution

by:
TopCat-007 earned 0 total points
ID: 39650642
I found the solution, I had to open the .cer file and press install certificate from windows explorer before Exchange would allow it to be installed.
0
 

Author Closing Comment

by:TopCat-007
ID: 39661987
I found the solution myself, there was an additional step to install the ceret, I had to open the .cer file and press install certificate from windows explorer before Exchange would allow it to be installed.

I expect this is because i'm running Exchange 2010 on Windows 2012.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question