Server 2012 Essentials Remote Web Access - Invalid Certificate

Duke Kahanamoku
Duke Kahanamoku used Ask the Experts™
on
Hello.  I have a problem with RWA on a Windows Server 2012 Essentials server.  I initially had purchase a certificate from the web hosting company - it seemed to work for a while but then quit working.  I tried various things to fix it and could not get it working.  So, then I re-ran the wizard on the server, releasing the domain, and setting up a personalized domain provided by Microsoft... mydomain.remotewebaccess.com... I ran the repair in the wizard as I was told to do... it complete successfully... I was able to access the server remotely at mydomain.remotewebaccess.com with no issues.  A day or so later it is broken again - the browser tells me that the certificate is not valid. I think that the server is somehow reverting to an incorrect security cert.

So, I am almost certain something is wrong with the certificate that RWA is linking to (although not when I first set it up) - not sure why it works and then is breaking.  I need some help trouble-shooting this please.  Thank you in advance for help with this!

Note:  I began to setup DirectAccess and may have messed something up?  not sure?... I think all I did was install the Remote Access Management Tools though... did not go much further when I realized that this was not something I needed.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2016

Commented:
First off you need to examine the certificate and find out what the problem is. Is it expired, does it have the wrong subject name?  It isn't wise to play with operational machines, use a vm for playing with, at least you can revert back to a prior snapshot if you mess things up.

When you say the certificate is not working what is the error message you are getting?
Duke KahanamokuIT Support Professional

Author

Commented:
Hi David,

It is pointing to servername.domainname.local - the internal certificate of the server?  When I originally set it up it was linked to the proper certificate that MS provides (from GoDaddy I think) for their personalized domains (remotewebaccess.com).  But after a day or so something is happening to break it.  I am not sure how to correct it.  Re-running the wizard does not fix things.  I though I read somewhere about someone having this same issue and they had to pay MS support for an incident to fix it - something about an incorrect cert. somehow over-riding or replacing the correct cert. - but I cannot find the article again.

All of the other servers that I have setup for clients using a MS personalized domain point to chosenname.remotewebacces.com -- and they work fine.

Thank you.
Top Expert 2016
Commented:
go into iis and check your ssl bindings and find the one that is  incorrect and change it to the cert that you have (godaddy)
Should you be charging more for IT Services?

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Duke KahanamokuIT Support Professional

Author

Commented:
Can you point me to some specific step-by-step instructions on how to do this?  Thank you.
Duke KahanamokuIT Support Professional

Author

Commented:
Ok, I thinks I figured out the bindings - but now I am getting...
 Service Unavailable
 HTTP Error 503. The service is unavailable.

 I noticed that there is nothing in the Binding information column... see attached file.
Bindings.rtf
Top Expert 2016

Commented:
go to bindings | ssl | edit
Duke KahanamokuIT Support Professional

Author

Commented:
Ok, I have the bindings issue fixed.  I need to know how to undo / remove DirectAccess as it is causing issues... can anyone help with this?  Thank you!
Duke KahanamokuIT Support Professional

Author

Commented:
Not a permanent fix.  DirectAccess installation causes the problem to automatically reoccur after a period of time.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial