Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Self Signed certificate problem

Posted on 2014-07-18
4
Medium Priority
?
234 Views
Last Modified: 2014-07-18
This is SBS 2008. Our self-signed certificate expired yesterday. I have used the 'Set up your internet address' wizard in the SBS console. I can see the new certificate is there, and it expires in July 2016.

My problem is that the client pc's dont seem to trust it. When anyone opens Outlook they get a certificate error stating that the certificate was issued by a company we have not chosen to trust.  When I look at the certificate, it is issued to remote.myexternaldomain.com and it is Issued by internaldomain-server-CA I've checked the expired certificate and it has the same information. So how do I fix this?
0
Comment
Question by:TownTalk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 40204032
Install the new certificate onto every machine you have or buy a trusted 3rd party SSL certificate for $60 a year and then it will automatically be trusted and you don't have to install anything on any machine other than the server.
0
 

Author Comment

by:TownTalk
ID: 40204034
But the self-signed should be trusted shouldn't it? I didn't have this problem when I re-issued the certificate 2 years ago.
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 2000 total points
ID: 40204048
When the clients join the domain, the certificate gets installed onto their PC so it therefore trusts the server because it has the certificate installed.

Now it doesn't have the new certificate installed, so it doesn't trust the server.

Not sure what you did 2 years ago, but that's what you need to do.

Alan
0
 

Author Closing Comment

by:TownTalk
ID: 40204153
Ah yes I understand now. Most of the machines are less than 2 years old, so they would have got the certificate when they were joined to the domain.  I've been around and installed the certificate, and I found that the problem wasn't occurring on the machines which are older than 2 years. So for whatever reason, they trust the certificate. I'm curious as to why this is the case, but my problem is fixed. So thanks guys for your input.

Ian
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The SBS 2011 release date (RTM) is supposed to be around Christmas, 2011.  This article is a compilation of my notes -- things I have learned first hand.  The items are in a rather random order, but I think this list covers most of what is new and d…
A quick step-by-step overview of installing and configuring Carbonite Server Backup.
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment. To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question