Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 291
  • Last Modified:

Additional Exchange 2010 Server - New Site - Certificate Errors

We upgraded Exchange 2010 SP2 from Exchange 2003 in 2012 and all has/is working as expected

I installed a new Exchange 2010 Enterprise server in a 2nd site with Mail, HUB, CAS roles
Now users in this site are getting Security Alert(s):
"The security certificate was issued by a company you have not chosen to trust. View the
certificate to determine whether you want to trust the certifying authority."

I took the defaults while installing the new server and no configuration has been done
0
Paul W
Asked:
Paul W
  • 3
  • 2
1 Solution
 
MaheshArchitectCommented:
You need to create SAN certificate request from Exchange server (CAS) for owa, autodiscover, and legacy url for exchange 2003 if migration is still running and need to get certificate from 3rd party CA.
Also you can \ should use same hostnames for internal and external Exchange URLs so that only single certificate can be used internally and externally
You need to use split DNS so that urls can be resolved from internet through public IP and from intranet through private IP

http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
http://technet.microsoft.com/en-us/library/dd351057(v=exchg.141).aspx

Mahesh
0
 
Md. MojahidCommented:
If you have already configure and buy certificate then you should check it out proper domain name and DNS.
0
 
Paul WAuthor Commented:
We've been using a 3rd party certificate for over a year - when we added a new server in an existing site is when the users are getting the errors

I inported the existing certificate into the new server - the new server has the CAS, HUB, Mailbox role installed

No mailboxes have been moved/created on the new server - it is the users at the site connecting to the CAS receiving the error
0
Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

 
MaheshArchitectCommented:
Have you assigned Exchange services to this certificate on new server ?

Mahesh
0
 
Paul WAuthor Commented:
This can be closed, I assigned the IIS service to the existing certificate
0
 
Paul WAuthor Commented:
I researched/tested on my own - compared differences with original server
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now