I have 1 on Prem Exchange 2013 servers and I'm trying to migrate to Exchange 2016. I moved my mailbox to one of the new servers and now I get a certificate warning only when I connect to exchange using Outlook connected to the corporate network. All of the internal uri's are pointing to the internet fqdn. The SAN cert is complaining that the local exchange server isn't in the SAN cert which it isn't. This works no problem for the Exchange 2013 server. Is there another setting I'm missing? Thanks in advance.

Dear EE,

I have SSL certificate with the extension (.pfx).
I have Apache 2.4 installed on Windows 2012 R2.

I need to configure the SSL Certificate on Apache (Windows Based).

Your kind support is needed.

Thanks

Hi,

I'm sure the used to work before! I need my website to redirect http to https, every time I try an achieve this the website stops serving all pages :( This is the
/etc/nginx/sites-enabled/default file WORKING as it stands.

What do I need to add change? Note: Ive added every combination of

server_name petenetlive.com www.petenetlive.com;
return 301 https://www.petenetlive.com$request_uri;

I can find, they all break the website

Help!!

So all http://www.petenetlive.com requests get redirected to https://www.petenetlive.com

# Default server configuration

server {
listen 80 default_server;
listen [::]:80 default_server;
listen 443 ssl http2 default_server;
listen [::]:443 ssl http2 default_server;

# Set The Root Directory for the Entire Website

    root /var/www/html/;

# Rocket-Nginx configuration, include.

    include rocket-nginx/default.conf;


# Add index.php to the list if you are using PHP

    index index.html index.htm index.nginx-debian.html;

# Add The Server IP Address or FQDN

    server_name petenetlive.com;

# Don't log favicon requests

    location = /favicon.ico {
      log_not_found off;
      access_log off;
     }

# Don't log robots.txt requests

    location = /robots.txt {
      allow all;
      log_not_found off;
      access_log on;
    }

# Set the location for the site SSL Certificates.

    ssl_certificate /etc/nginx/ssl/www_petenetlive_com.crt;
    ssl_certificate_key /etc/nginx/ssl/www.petenetlive.com.key;

# 

Select all Open in new window

…

What command is used to check a ssl certificate on mac terminal using IP address

Hi,

I am running exchange server 2016 with two domains tenant environment.

I am using webmail.domain.net.au as OWA/ECP and Outlook Anywhere and install the 3rd party certificate.

I generate another CSR for autodiscover.domain.com.au. I install the certificate. I am not sure about services. which service i assign for autodiscover.domain.com.au.

Please review the attach image. I would like to use webmail.domain.net.au as OWA/ECP and Outlook Anywhere but autodiscover.domain.com.au for auto configuration.

Please note: webmail.domain.net.au and autodiscover.domain.com.au both are different domains.
Auto.jpg

Dear Experts,
We have a Windows Server 2016 Standard running Java 8 v.211, and is getting flagged in the vulnerability scan "A remote Java JMX agent is configured without SSL client and password authentication."  The suggested solution is to enable SSL client or password authentication for the JMX agent, however, as I research for the solution, I am not getting a clear answers.

The one I wanted to try was to set up SSL, using keytool -genkey, then setting the system properties such as javax.net.ssl.keyStore Keystore location.
What I need is to understand how to accomplish these tasks, as I found the commands that need to be executed.   Am I executing this from Java environment that runs on this server?

Please advise.

java -Dcom.sun.management.jmxremote.port=9999
-Dcom.sun.management.jmxremote.password.file=jmxremote.password
-Djavax.net.ssl.keyStore=/home/user/.keystore
-Djavax.net.ssl.keyStorePassword=myKeyStorePassword
-Dcom.sun.management.jmxremote.ssl.need.client.auth=true
-Djavax.net.ssl.trustStore=/home/user/.truststore
-Djavax.net.ssl.trustStorePassword=myTrustStorePassword
-Dcom.sun.management.jmxremote.registry.ssl=true
-Djava.security.manager
-Djava.security.policy=jmx.policy
-jar lib/derbyrun.jar server start -h 0.0.0.0

(From https://docs.oracle.com/javadb/10.10.1.2/adminguide/radminjmxenablepwdssl.html)

I have a web application hosted in Microsoft Azure. It runs on https.
In the NSG configuration do I need to open the http (443) port inbound, outbound or both?

Dear Experts

Please help me with steps on "HOW TO" generate CSR for installing SSL certificate on Cisco Firepower Management Center(FMC) for Firepower Threat Defense (FTD), either though ssh or through web interface log in please help me with steps. thanks in advance.

Pls help...

User http access : sdm.mnd.com (75.68.129.206, Port 80)
Gateway will NAT the IP address & port to reserve Proxy server IP : 152.210.72.4:10118
RH Linux - Reserse proxy server : 152.210.72.4:10118
RH Linux application server : 152.160.85.4:10021

Verified the application server works well with direct IP.
RH Linux reverse proxy server, verified httpd successfully started.
Configuring reverse proxy settings, it is not working.
Can help me/ advise me what went wrong or to be modified...

User will access the URL http://sdm.mnd.com

Reverse proxy server httpd.conf file

<VirtualHost *:10118>
        ServerAdmin admin@mnd.com
        ProxyRequests off
        ProxyPreserveHost On
        ServerName sdm.mnd.com
        ProxyPass               /        http://152.160.85.4:10021
        ProxyPassReverse        /        http://152.160.85.4:10021
</VirtualHost>


Application server server.xml file

-->
      <Connector port="10021" protocol="HTTP/1.1"
      connectionTimeout="20000"

      redirectPort="8443" URIEncoding="UTF-8" />
   
      <!-- A "Connector" using the shared thread pool-->
   
<!--

Entering www.felixstowerotaryclub.org successfully redirects to https://www.rotary-ribi.org/clubs/homepage.php?ClubID=469 and you can see the green padlock on the browser bar.

Similarly entering felixstowerotaryclub.org also does the same.

However entering https://www.felixstowerotaryclub.org and https://felixstowerotaryclub.org get certificate errors.

Is it actually possible to get an https URL to redirect to a different website with its own certificate?

One issue is that if someone googles "Felixstowe Rotary Club" one of the search results (for me it is the second one in the list) is https://www.felixstowerotaryclub.org so potentially someone might use this link.

We have IIS 7.5 on Server 2008 R2 Datacenter. We have been using a Godaddy SSL cert and it had to be rekeyed. I did that, the SSL cert was approved and available on the website. I downloaded the zip file and followed Godaddy's steps. I added the intermediate cert using the Certificates MMC. Then I went to IIS and chose "complete certificate request" and chose the .crt file. When I add a "friendly name" and click okay, it looks like it's there. But, when I go to bind it to the website, it isn't there, and it disappears from the Server Certificates area in IIS.

I did some googling and found the following, which appears to have fixed the issue in that I can see the cert now: "Here are instructions to make the PFX if you have no private key. To fix this, use the MMC snapin to import the cert into PERSONAL, click it and grab the serial # line.  Go to dos, run certutil -repairstore my "paste the serial 3 in here" (you need the quotes) then refresh MMC with personal certs, right click it – export – select everything except DELETE PRIVATE KEY, hit ok.  Then go to IIS and IMPORT cert instead of finish request." (comment by pixelloa at https://blogs.msdn.microsoft.com/vijaysk/2009/05/22/disappearing-ssl-certificates-from-iis-7-0-manager/ )

When I went to export the PFX it prompted for a mandatory password, which I added, and then entered it when importing into IIS. This is a business website with about 50 users and I'd prefer this to run smoothly. Are there any caveats I should …

Hi,

I have a registered a domain at .ovh. I want to create a letsencrypt ssl certificate for my synology DSM5.2 NAS.

When running acme.sh I am getting this error message




I have opened ports 443 and 80 on my router to point to the NAS IP

I have no website just want to use an https login to access afp with synology DSFiles through vpn. Any idea how to fix the ssl certificate issue?

Thks in advance

I am trying to renew my NDES server certificates and since I upgraded my CA's and reissued their certs from SHA1 to SHA2 I am unable to add the Exchange Enrollment Agent (Offline request) to the templates available to issue from the CA.

Server 2012 R2 Active Directory Certificate Services installed.