[Webinar] Streamline your web hosting managementRegister Today

x
?
Solved

Exchange 2010 certificate

Posted on 2013-11-09
9
Medium Priority
?
277 Views
Last Modified: 2013-11-25
I believe Exchange server 2010 requires certificate for OWA…I am not sure if it requires certificate for internal usage.

in either case if there are already certificates installed for OWA as well as for internal usage, where can I check that, and also wonder if they expire at certain time, or once you install them , they are forever..??

Thank you
0
Comment
Question by:jskfan
9 Comments
 
LVL 15

Assisted Solution

by:Skyler Kincaid
Skyler Kincaid earned 400 total points
ID: 39636509
If you want to use OWA external without the the cert error and if you would like to have anyone be able to set there email up on their phones or use Outlook externally you need to get a UCC cert. They will run you around $500 and that will be good for a year. Sometimes you can get discounts if you buy the 3 year certs but usually they are still the one year price times 3.

You would need to check it from IIS.

http://technet.microsoft.com/en-us/library/cc754686(v=ws.10).aspx

Have you ever bought or applied a cert before?
0
 
LVL 39

Accepted Solution

by:
Mahesh earned 800 total points
ID: 39636606
Is your internal and external OWA URLs are same ?
Normally internal and external OWA urls are different.
When you install CAS role, Exchange automatically create X.509 SSL server certificate for you with server FQDN as certificate common name.
Since most of the organizations make custom internal OWA URL, this default certificate will work with warning message.
In order to get rid of this message, you can install Windows internal AD integrated Certificate authority or can use existing one if you have and generate required SSL cert for your internal OWA url.
The expiry period of this certificate depends upon what you have set on CA server.
All OWA certificates can be located at certificate personnel store or
through Exchange MMC\server configuration\CAS Server
Hope that helps
0
 
LVL 6

Assisted Solution

by:Iradat Siddiqui
Iradat Siddiqui earned 400 total points
ID: 39636673
0
Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

 
LVL 10

Assisted Solution

by:Vijaya Babu Sekar
Vijaya Babu Sekar earned 400 total points
ID: 39638137
No, Based on the exchange version. have some validity, for eg: if you installed Exchange 2010 SP1 it will be valid for 5 years. then you need create new certificate. if you dont want external use. you dont create any ssl certificate.

if you want to use external. you should create, import and enabled the certificate for OWA, Active sync, outlook any where,

You can refer the below article, it will useful for create the SSL certificate for external
http://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm

Thanks.
0
 

Author Comment

by:jskfan
ID: 39640506
yes ...Internal and external URLs for OWA are the same
0
 
LVL 39

Expert Comment

by:Mahesh
ID: 39640977
In that case you don't required additional certificates.
You can have single Public SSL cert with required Subject alternative names (SAN) and bind all Exchange services to that certificate.
If you wanted to use different url for internal network, then you need to create additional SSL cert from Internal CA server.
Also you need to create additional CAS VIP OR additional OWA virtual directory which can bind internal SSL cert.
0
 

Author Comment

by:jskfan
ID: 39642548
in my case, Internal and external URLs for OWA are the same .

where in Exchange can I check the Certificate and the date of its expiration ?
0
 
LVL 39

Assisted Solution

by:Mahesh
Mahesh earned 800 total points
ID: 39642773
0
 

Author Closing Comment

by:jskfan
ID: 39676331
Thanks
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange database can often fail to mount thereby halting the work of all users connected to it. Finding out why database isn’t mounting is crucial and getting the server back online. Stellar Phoenix Mailbox Exchange Recovery is a champion product t…
There’s hardly a doubt that Business Communication is indispensable for both enterprises and small businesses, and if there is an email system outage owing to Exchange server failure, it definitely results in loss of productivity.
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses
Course of the Month8 days, 16 hours left to enroll

590 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question