Certificate Not Valid While Installaing LYNC2010 SERVER
Dear Experts,
Thanks in advance. While Installing Lync2010 in my lab environment I stocked in creating certificates on Lync server 2010.
I followed this link and as the instruction I did and I am sure I have not done any mistake.
http://policelli.com/blog/archive/2011/02/28/step-by-step-guide-to-preparing-a-lab-environment-for-lync-server-2010-2/
My Lab Setup
LYNC-DC-Windows2008R2, AD DS, DNS, AD CS
LYNC-SVR- Windows 2008R2 Front end ,Back end
When requesting the Certificate I get the following message:
A Certificate with thumbprint " 3E76ED3EC12XXXXXXXXXXXX has been added to the local certificate store.
The certificate has been issued by the online certification authority and is installed to the local certificate store, however it is not valid. Make sure that the Root certificate, and necessary certificate chain is installed on this server.
I am requesting you please help me out..
Thanks in advance. While Installing Lync2010 in my lab environment I stocked in creating certificates on Lync server 2010.
I followed this link and as the instruction I did and I am sure I have not done any mistake.
http://policelli.com/blog/archive/2011/02/28/step-by-step-guide-to-preparing-a-lab-environment-for-lync-server-2010-2/
My Lab Setup
LYNC-DC-Windows2008R2, AD DS, DNS, AD CS
LYNC-SVR- Windows 2008R2 Front end ,Back end
When requesting the Certificate I get the following message:
A Certificate with thumbprint " 3E76ED3EC12XXXXXXXXXXXX has been added to the local certificate store.
The certificate has been issued by the online certification authority and is installed to the local certificate store, however it is not valid. Make sure that the Root certificate, and necessary certificate chain is installed on this server.
I am requesting you please help me out..
ASKER
Dear David,
Thanks for your comments.
There are lots of certificates as I mentioned below. Which File need for download
DigiCert Assured ID CA-1
DigiCert Assured ID CA G2
DigiCert Assured ID CA G3
DigiCert Assured ID Code Signing CA-1
DigiCert EV Code Signing CA (SHA2)
Regards
Biswajeet
Thanks for your comments.
There are lots of certificates as I mentioned below. Which File need for download
DigiCert Assured ID CA-1
DigiCert Assured ID CA G2
DigiCert Assured ID CA G3
DigiCert Assured ID Code Signing CA-1
DigiCert EV Code Signing CA (SHA2)
Regards
Biswajeet
ASKER
Dear David,
I am in Lync Server 2010 Deployment wizard where I have finished step 1: Install local configuration store completed
Step:2 Setup or Remove Lync Server Components completed.
Step 3: Request, Install or Assign Certificates Not completed . I am stuck in step no 3. Certificate Wizard . Which option I have to select ?
Request
Assign
Import Certificate.
Please suggest....
I am in Lync Server 2010 Deployment wizard where I have finished step 1: Install local configuration store completed
Step:2 Setup or Remove Lync Server Components completed.
Step 3: Request, Install or Assign Certificates Not completed . I am stuck in step no 3. Certificate Wizard . Which option I have to select ?
Request
Assign
Import Certificate.
Please suggest....
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dear David,
You are genius. Thanks a lot for your time and support. After installed all these required certificates the Issue resolved. I installed successfully LYNC2010 in my lab. Thank you so much.
Regards
Biswajeet Pattnaik
You are genius. Thanks a lot for your time and support. After installed all these required certificates the Issue resolved. I installed successfully LYNC2010 in my lab. Thank you so much.
Regards
Biswajeet Pattnaik
ASKER
Hi,
As per the instruction of David Johnson, MVP issue resolved
As per the instruction of David Johnson, MVP issue resolved
root ca
---- subordinate ca
--------- sub-subordinate ca
-------------- your certificate
You need all of these certificates except for yours in the trusted root provider store.
godaddy/starfield https://certs.godaddy.com/repository
digicert https://www.digicert.com/digicert-root-certificates.htm
startssl https://www.startssl.com/certs/
Verisign Root Cert. https://access.ca.gov/Certs/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt
Verisign Intermediate Cert. https://access.ca.gov/Certs/VeriSign_Class_3_Secure_Server_CA_-_G3.crt