Solved

Exchange 2013 CAS server certificate problem

Posted on 2014-01-26
5
440 Views
Last Modified: 2014-02-19
I have 4 exchange 2013 servers 2 Mailbox and 2 CAS running in win 2008 r2. When I check the certificates using power shell in the CAS02 it is shown the certificate of mailbox01.

But in ECP showing correctly. Also when I tried to import the third part certificate in cas02 I am getting an error certificate with this thump is already there.
Cas02-Certi.jpg
Certilist.jpg
0
Comment
Question by:jobby1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39811134
Please run command "get-exchangecertificate -server yourservername".
Have you assigned any services to the certificate?
0
 
LVL 26

Assisted Solution

by:-MAS
-MAS earned 250 total points
ID: 39811154
As suggested above check the certificates in CAS02
And enable services using the command below
Enable-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e -Services POP,IIS,SMTP. etc

http://technet.microsoft.com/en-us/library/aa997231(v=exchg.150).aspx
0
 

Author Comment

by:jobby1
ID: 39817446
Do I need to remove default certificate.

Do I need to remove the services for the default certificates.
0
 
LVL 4

Assisted Solution

by:pcmghouse
pcmghouse earned 250 total points
ID: 39817501
Were you able to import the certificate.
Do not remove the default ones. SMTP will work fine with the self-signed ones.

You can assign IIS services. But you have to make sure that your third party certificate is a SAN or wild card. And it is valid.

Provide output for get-exchangecertificate -server yourcasservername.

This IIS cert will be used in OWA, Outlook connectivity.
0
 
LVL 26

Accepted Solution

by:
-MAS earned 250 total points
ID: 39817555
As suggested by pcmghouse let the SMTP enabled on self signed certificate and enable IIS on the new one
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

690 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question