Solved

Installing Exchange Server 2013 on Windows Server 2012

Posted on 2014-01-19
5
3,015 Views
Last Modified: 2014-01-25
I'm trying to install exchange server 2013. Everytime I get an error whilst it tries to install the Mailbox Role.

Error:
The following error was generated when "$error.Clear();
          Install-ExchangeCertificate -WebSiteName "Exchange Back End" -services "IIS, POP, IMAP" -DomainController $RoleDomainController -InstallInTrustedRootCAIfSelfSigned $true
          if ($RoleIsDatacenter -ne $true -And $RoleIsPartnerHosted -ne $true)
          {
            Install-AuthCertificate -DomainController $RoleDomainController
          }
        " was run: "Could not grant Network Service access to the certificate with thumbprint F14E751BD8D7252CD084F144753E4E9BE8CD571B because a cryptographic exception was thrown.".

That's the error the setup has provided me. A google search hasn't been fruitfull so I turned to you guys for some help. From the error I can understand that the Network Service account ouldn't be granted the access it needed to complete it's task.

In the meantime I'll try and grant the Network Service account the access it needs but so far I wasn't all that successfull. Due to the fact that I couldn't find any certificate with the described thumbprint.

Some information about the server:

- Windows Server 2012 Standard
- No DC, only SQL Server runs on it.
- Quad-core, 8 gb of ram
0
Comment
Question by:feanaro100
  • 4
5 Comments
 
LVL 53

Expert Comment

by:Will Szymkowski
Comment Utility
Do you have an Internal CA? Are you installing CAS/Mailbox role on the same server? Do you already have a older verison of Exchange running in your environment 2007/2010? Take a look at the below link which is a PAQ to an identical issue. Also, do you have your firewalls enabled on this server? When you say
No DC
i am assuming that you are just meaning on this particular server.

PAQ

Will.
0
 

Author Comment

by:feanaro100
Comment Utility
Yes, this server is part of a domain network but the server itself is nog domain controller. We don't have an internal CA and this is the first time we are trying to install exchange server. And because this is a datacenter server the firewalls are indeed enabled.
0
 

Author Comment

by:feanaro100
Comment Utility
Oh and we are trying to install all of the exchange server components on the same server.
0
 

Accepted Solution

by:
feanaro100 earned 0 total points
Comment Utility
By changing the ownership of the Certificates private keys to myself and granting Network Service Full Control the installation continued.

I did this through the Certificates MMC snap-in and click Manage Private Keys... in the All Tasks sub-menu of the certificate. Thanks for the help @spec01!
0
 

Author Closing Comment

by:feanaro100
Comment Utility
Because the problem disappeared after the above proposed solution.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Resolve DNS query failed errors for Exchange
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now