Solved

Exchange 2013 CAS server certificate problem

Posted on 2014-01-26
5
423 Views
Last Modified: 2014-02-19
I have 4 exchange 2013 servers 2 Mailbox and 2 CAS running in win 2008 r2. When I check the certificates using power shell in the CAS02 it is shown the certificate of mailbox01.

But in ECP showing correctly. Also when I tried to import the third part certificate in cas02 I am getting an error certificate with this thump is already there.
Cas02-Certi.jpg
Certilist.jpg
0
Comment
Question by:jobby1
  • 2
  • 2
5 Comments
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39811134
Please run command "get-exchangecertificate -server yourservername".
Have you assigned any services to the certificate?
0
 
LVL 24

Assisted Solution

by:-MAS
-MAS earned 250 total points
ID: 39811154
As suggested above check the certificates in CAS02
And enable services using the command below
Enable-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e -Services POP,IIS,SMTP. etc

http://technet.microsoft.com/en-us/library/aa997231(v=exchg.150).aspx
0
 

Author Comment

by:jobby1
ID: 39817446
Do I need to remove default certificate.

Do I need to remove the services for the default certificates.
0
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39817501
Were you able to import the certificate.
Do not remove the default ones. SMTP will work fine with the self-signed ones.

You can assign IIS services. But you have to make sure that your third party certificate is a SAN or wild card. And it is valid.

Provide output for get-exchangecertificate -server yourcasservername.

This IIS cert will be used in OWA, Outlook connectivity.
0
 
LVL 24

Accepted Solution

by:
-MAS earned 250 total points
ID: 39817555
As suggested by pcmghouse let the SMTP enabled on self signed certificate and enable IIS on the new one
0

Featured Post

Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

Join & Write a Comment

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
how to add IIS SMTP to handle application/Scanner relays into office 365.

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now