Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Additional Exchange 2010 Server - New Site - Certificate Errors

Posted on 2014-01-07
6
Medium Priority
?
287 Views
Last Modified: 2014-01-18
We upgraded Exchange 2010 SP2 from Exchange 2003 in 2012 and all has/is working as expected

I installed a new Exchange 2010 Enterprise server in a 2nd site with Mail, HUB, CAS roles
Now users in this site are getting Security Alert(s):
"The security certificate was issued by a company you have not chosen to trust. View the
certificate to determine whether you want to trust the certifying authority."

I took the defaults while installing the new server and no configuration has been done
0
Comment
Question by:Paul W
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:Mahesh
ID: 39762717
You need to create SAN certificate request from Exchange server (CAS) for owa, autodiscover, and legacy url for exchange 2003 if migration is still running and need to get certificate from 3rd party CA.
Also you can \ should use same hostnames for internal and external Exchange URLs so that only single certificate can be used internally and externally
You need to use split DNS so that urls can be resolved from internet through public IP and from intranet through private IP

http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
http://technet.microsoft.com/en-us/library/dd351057(v=exchg.141).aspx

Mahesh
0
 
LVL 12

Expert Comment

by:Md. Mojahid
ID: 39764579
If you have already configure and buy certificate then you should check it out proper domain name and DNS.
0
 

Author Comment

by:Paul W
ID: 39765175
We've been using a 3rd party certificate for over a year - when we added a new server in an existing site is when the users are getting the errors

I inported the existing certificate into the new server - the new server has the CAS, HUB, Mailbox role installed

No mailboxes have been moved/created on the new server - it is the users at the site connecting to the CAS receiving the error
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 38

Expert Comment

by:Mahesh
ID: 39765245
Have you assigned Exchange services to this certificate on new server ?

Mahesh
0
 

Accepted Solution

by:
Paul W earned 0 total points
ID: 39776629
This can be closed, I assigned the IIS service to the existing certificate
0
 

Author Closing Comment

by:Paul W
ID: 39790449
I researched/tested on my own - compared differences with original server
0

Featured Post

What’s Wrong with Your Cloud Strategy ?

Even as many CIOs are embracing a cloud-first strategy, the reality is that moving to the cloud is a lengthy process and the end-state is likely to be a blend of multiple clouds—public and private. Learn why multicloud solutions matter in this webinar by Nimble Storage.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes clients can lose connectivity with the Lotus Notes Domino Server, but there's not always an obvious answer as to why it happens.   Read this article to follow one of the first experiences I had with Lotus Notes on a client's machine, my…
In this article I discuss my selections of the Top Four free Outlook OST File Viewers available. Open, view and read even damaged OST files by using these tools. They all provide a clear preview of all data such as emails, notes, tasks, calendars, e…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question