Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Self Signed certificate problem

Posted on 2014-07-18
4
Medium Priority
?
238 Views
Last Modified: 2014-07-18
This is SBS 2008. Our self-signed certificate expired yesterday. I have used the 'Set up your internet address' wizard in the SBS console. I can see the new certificate is there, and it expires in July 2016.

My problem is that the client pc's dont seem to trust it. When anyone opens Outlook they get a certificate error stating that the certificate was issued by a company we have not chosen to trust.  When I look at the certificate, it is issued to remote.myexternaldomain.com and it is Issued by internaldomain-server-CA I've checked the expired certificate and it has the same information. So how do I fix this?
0
Comment
Question by:TownTalk
  • 2
  • 2
4 Comments
 
LVL 76

Assisted Solution

by:Alan Hardisty
Alan Hardisty earned 2000 total points
ID: 40204032
Install the new certificate onto every machine you have or buy a trusted 3rd party SSL certificate for $60 a year and then it will automatically be trusted and you don't have to install anything on any machine other than the server.
0
 

Author Comment

by:TownTalk
ID: 40204034
But the self-signed should be trusted shouldn't it? I didn't have this problem when I re-issued the certificate 2 years ago.
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 2000 total points
ID: 40204048
When the clients join the domain, the certificate gets installed onto their PC so it therefore trusts the server because it has the certificate installed.

Now it doesn't have the new certificate installed, so it doesn't trust the server.

Not sure what you did 2 years ago, but that's what you need to do.

Alan
0
 

Author Closing Comment

by:TownTalk
ID: 40204153
Ah yes I understand now. Most of the machines are less than 2 years old, so they would have got the certificate when they were joined to the domain.  I've been around and installed the certificate, and I found that the problem wasn't occurring on the machines which are older than 2 years. So for whatever reason, they trust the certificate. I'm curious as to why this is the case, but my problem is fixed. So thanks guys for your input.

Ian
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The articles for turning off the Client firewall policy on the internet are for SBS 2008 and don't really help for SBS 2011. They actually moved the Client firewall policy. In 2011, the client firewall policy has moved to the SBS computers conta…
Because virtualization becomes more and more common, and, with Microsoft Hyper-V included in Windows Server at no additional costs, and, most server hardware nowadays is more than capable of running a physical Small Business Server (SBS) 2008 or 201…
Video by: ITPro.TV
In this episode Don builds upon the troubleshooting techniques by demonstrating how to properly monitor a vSphere deployment to detect problems before they occur. He begins the show using tools found within the vSphere suite as ends the show demonst…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Suggested Courses

886 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question