Solved

Exchange 2013 CAS server certificate problem

Posted on 2014-01-26
5
437 Views
Last Modified: 2014-02-19
I have 4 exchange 2013 servers 2 Mailbox and 2 CAS running in win 2008 r2. When I check the certificates using power shell in the CAS02 it is shown the certificate of mailbox01.

But in ECP showing correctly. Also when I tried to import the third part certificate in cas02 I am getting an error certificate with this thump is already there.
Cas02-Certi.jpg
Certilist.jpg
0
Comment
Question by:jobby1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39811134
Please run command "get-exchangecertificate -server yourservername".
Have you assigned any services to the certificate?
0
 
LVL 25

Assisted Solution

by:-MAS
-MAS earned 250 total points
ID: 39811154
As suggested above check the certificates in CAS02
And enable services using the command below
Enable-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e -Services POP,IIS,SMTP. etc

http://technet.microsoft.com/en-us/library/aa997231(v=exchg.150).aspx
0
 

Author Comment

by:jobby1
ID: 39817446
Do I need to remove default certificate.

Do I need to remove the services for the default certificates.
0
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39817501
Were you able to import the certificate.
Do not remove the default ones. SMTP will work fine with the self-signed ones.

You can assign IIS services. But you have to make sure that your third party certificate is a SAN or wild card. And it is valid.

Provide output for get-exchangecertificate -server yourcasservername.

This IIS cert will be used in OWA, Outlook connectivity.
0
 
LVL 25

Accepted Solution

by:
-MAS earned 250 total points
ID: 39817555
As suggested by pcmghouse let the SMTP enabled on self signed certificate and enable IIS on the new one
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A recent project that involved parsing Tableau Desktop and Server log files to extract reusable user queries for use in other systems. I chose to use PowerShell to gather the data, and SharePoint to present it...
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video discusses moving either the default database or any database to a new volume.

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question