Solved

"The certificate is invalid for exchange server use" error message on previously working certificate

Posted on 2016-10-13
4
31 Views
Last Modified: 2016-10-24
Hi experts

This error has just appeared.

This certificate was working absolutely fine and has been for about a month or so. All of a sudden a customer called in saying that the certificate was being rejected(? I've gotten this message about 3rd hand so don't know exactly what it said I'm afraid) and looked on the exchange console and was met with a big red X. I've re-imported the certificate trusted authority to the correct place.

Just puzzle how to fix as it hasn't expired and was working fine a day ago.
0
Comment
Question by:unrealone1
  • 2
4 Comments
 
LVL 15

Assisted Solution

by:Ivan
Ivan earned 250 total points
ID: 41842055
Hi,

are there any intermediate certificates that you need to import? If you go to OWA or ECP, and click on certificate, can you follow entire path of cert?

Regards,
Ivan.
0
 
LVL 26

Accepted Solution

by:
skullnobrains earned 250 total points
ID: 41849943
most likely the minimum cyphers requirements are not met. this may happen after a windows update. it is also possible that a network change causes this : exchange may check the certificate against the authority upon startup so if the corresponding flow is closed or other network issues such as a faulty dns arise, exchange might not want to use the certificate. there should be an explicit message in the application log
0
 
LVL 1

Author Comment

by:unrealone1
ID: 41856734
hi all.

i was out of the office all last week and just now on my return found out it's all working.

the person that fixed it isn't here so i can't share the knowledge I'm afraid
0
 
LVL 26

Expert Comment

by:skullnobrains
ID: 41856995
feel free to share later on, it may help a number of other people.

when you solve your problem yourself, you may accept your own comment which won't cost you any points

when your problem is not solved, and no comments actually helped, you may delete the question

best regards
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
how to add IIS SMTP to handle application/Scanner relays into office 365.

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now