Exchange
--
Questions
--
Followers
Top Experts
In my Exchange 2013 Installation i want to enable POPS and IMAPS for secure communications between clients and server,
I have import a wildcart certificate . I use this for autodiscover and OWA and it plays perfect.
When i try to enable the certificate for IMAP and POP i take the error ,
This certificate with thumbprint FFED997A46629A5BF6F802C9AB
I want to use mail.domain.net for hostnames for pop and imap so i go to servers and i set the fqdn of the x509 certificate mail.domain.net . ย I then try again to enable the certificate for imap and pop but i take the same error.
Any ideas ?
Thanks
Zero AI Policy
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
http://exchangeserverpro.com/exchange-2013-assign-ssl-certificate-to-services/
what you need to do is open exchange management shell and enter these commands
set-POPSettings -X509CertificateName mail.domain.com
set-IMAPSettings -X509CertificateName mail.domain.com
obviously you need to change the mail.domain.com part to your domain but this will bind your cert if you get any errors please let me know.
EARN REWARDS FOR ASKING, ANSWERING, AND MORE.
Earn free swag for participating on the platform.
I have already run the Set-Pop and Set Imap for the X509 Certificate for mail.domain.com
But still its not working after i try to bind the certificate to the services because as i said i have a wildcard certificate *.domain.com and when im trying to bind the certificate i take the same error about the subject is not a fully qualified domain name.
Any ideas ?
Get a FREE t-shirt when you ask your first question.
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
ย ย Enable-ExchangeCertificate
ย ย Set-ImapSettings -server CAS01 -X509CertificateName imap.domain.com
ย ย Set-PopSettings -server CAS01 -X509CertificateName pop.domain.com
ย ย Restart the POP and IMAP services
EARN REWARDS FOR ASKING, ANSWERING, AND MORE.
Earn free swag for participating on the platform.
I have run the commands in both my servers. Also i restart them just to be sure.
The security warning shows my CAS01 and just to be sure i drop it from Load Balancer but i take the same warning from CAS02 . This is so strange....
Get a FREE t-shirt when you ask your first question.
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
But we told we cannot assign the certificate because its wildcard . We only set-pop and set-imap for the X509Certificatename . If i try to assign i take error
WARNING: This certificate with thumbprint FFED997A46629A5BF6F802C9AB
cannot used for POP SSL/TLS connections because the subject is not a Fully Qualified Domain Name (FQDN). Use command
Set-POPSettings to set X509CertificateName to the FQDN of the service.
Before some posts you write "ย You will not need to bind it that way, the only thing you need to do is use the set-pop command. It will always fail if you try to use the enable-cert command for pop and imap. ย "
Thanks for your help
I have restarted yes. Also i restart all Servers. But still it gives me the internal certificate.
EARN REWARDS FOR ASKING, ANSWERING, AND MORE.
Earn free swag for participating on the platform.
Thanks
Get a FREE t-shirt when you ask your first question.
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
Thanks!
Exchange
--
Questions
--
Followers
Top Experts
Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.