Solved

sbs2011 certifficate problem

Posted on 2014-02-18
2
343 Views
Last Modified: 2014-02-18
We have single sbs2011 server running exchange. I noticed yesterday that on of our locally issued certifficates was due to expire.

The one in question was :- servername.domainname.local issued by domainname-servername-CA.

I right clicked the certifficate and chose renew. It seemd to process OK and now says that it is valid.

Today I came in and the server is reporting - "An internal transport certificate expired. Thumbprint:A10260BE011C3FA3CCFF16356294FDD76EBFB00F"

and then

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of Servername.domainname.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of servername.dmainname.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

In our event log.

I can see the actual certifficate in question on both the IIS manager and the EMC, and it is reported as having expired.

I have tried to renew this locally by right clicking the certifficate and choosing renew, but unlike yesterday, I am told that it is being submitted to an online authority but was denied.

I am a little confused here, as we already have an SSL in place for our owa access etc ie remote.domainname.co.uk and am unsure about why this locally held certifficate is not being renewed locally??

What am I doing wrong?

Any advice much appreciated.
0
Comment
Question by:nigelbeatson
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 14

Accepted Solution

by:
Don Thomson earned 500 total points
ID: 39867183
In your SBS console - Goto Network - far right tab and run fix my network - It should find the expired Cert  and re-issue it
0
 

Author Closing Comment

by:nigelbeatson
ID: 39867190
Thats great - many thanks
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read this checklist to learn more about the 15 things you should never include in an email signature.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question