[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Server 2012 Essentials Remote Web Access - Invalid Certificate

Posted on 2014-08-15
9
Medium Priority
?
1,568 Views
Last Modified: 2014-09-17
Hello.  I have a problem with RWA on a Windows Server 2012 Essentials server.  I initially had purchase a certificate from the web hosting company - it seemed to work for a while but then quit working.  I tried various things to fix it and could not get it working.  So, then I re-ran the wizard on the server, releasing the domain, and setting up a personalized domain provided by Microsoft... mydomain.remotewebaccess.com... I ran the repair in the wizard as I was told to do... it complete successfully... I was able to access the server remotely at mydomain.remotewebaccess.com with no issues.  A day or so later it is broken again - the browser tells me that the certificate is not valid. I think that the server is somehow reverting to an incorrect security cert.

So, I am almost certain something is wrong with the certificate that RWA is linking to (although not when I first set it up) - not sure why it works and then is breaking.  I need some help trouble-shooting this please.  Thank you in advance for help with this!

Note:  I began to setup DirectAccess and may have messed something up?  not sure?... I think all I did was install the Remote Access Management Tools though... did not go much further when I realized that this was not something I needed.
0
Comment
Question by:Duncan007
  • 5
  • 3
8 Comments
 
LVL 84

Expert Comment

by:David Johnson, CD, MVP
ID: 40265252
First off you need to examine the certificate and find out what the problem is. Is it expired, does it have the wrong subject name?  It isn't wise to play with operational machines, use a vm for playing with, at least you can revert back to a prior snapshot if you mess things up.

When you say the certificate is not working what is the error message you are getting?
0
 

Author Comment

by:Duncan007
ID: 40265367
Hi David,

It is pointing to servername.domainname.local - the internal certificate of the server?  When I originally set it up it was linked to the proper certificate that MS provides (from GoDaddy I think) for their personalized domains (remotewebaccess.com).  But after a day or so something is happening to break it.  I am not sure how to correct it.  Re-running the wizard does not fix things.  I though I read somewhere about someone having this same issue and they had to pay MS support for an incident to fix it - something about an incorrect cert. somehow over-riding or replacing the correct cert. - but I cannot find the article again.

All of the other servers that I have setup for clients using a MS personalized domain point to chosenname.remotewebacces.com -- and they work fine.

Thank you.
0
 
LVL 84

Accepted Solution

by:
David Johnson, CD, MVP earned 1500 total points
ID: 40265417
go into iis and check your ssl bindings and find the one that is  incorrect and change it to the cert that you have (godaddy)
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 

Author Comment

by:Duncan007
ID: 40265420
Can you point me to some specific step-by-step instructions on how to do this?  Thank you.
0
 

Author Comment

by:Duncan007
ID: 40265639
Ok, I thinks I figured out the bindings - but now I am getting...
 Service Unavailable
 HTTP Error 503. The service is unavailable.

 I noticed that there is nothing in the Binding information column... see attached file.
Bindings.rtf
0
 
LVL 84

Expert Comment

by:David Johnson, CD, MVP
ID: 40292058
go to bindings | ssl | edit
0
 

Author Comment

by:Duncan007
ID: 40306571
Ok, I have the bindings issue fixed.  I need to know how to undo / remove DirectAccess as it is causing issues... can anyone help with this?  Thank you!
0
 

Author Closing Comment

by:Duncan007
ID: 40329565
Not a permanent fix.  DirectAccess installation causes the problem to automatically reoccur after a period of time.
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the wake of AWS' S3 outage, we want to discuss the importance of storage and data diversification in the event of a hack, crash, or system disruption. We spoke with Experts Exchange’s COO Gene Richardson for a deeper understanding.
Considering cloud tradeoffs and determining the right mix for your organization.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question