Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Confused about Exchange 2007 Certificate.. Any Advice Please
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Confused about Exchange 2007 Certificate.. Any Advice P... - 26.Jul.2008 7:29:18 PM
|
|
|
farisnt
Posts: 145
Joined: 27.Jun.2006
Status: offline
|
HI
I am a bit Confuesed when it come for Exchange Server 2007 Publishing
as its known that Exchange come with a Self-Assign SSL Certificate and ISA Server need a Certificate to publish the OWA.
I have My Local Domain name is: test.lab
and My Exchange Server Name is: Email.test.lab
My External Domain Name is: External.com
Now The Q that I did not understand it are:
1- as I need to publish OWA using Cert with Subject name External.com, Do I have to modify the exist Certificate on Exchange server
2- to understand this I read the documentation about Publishing SSL for Exchange 2003 with ISA 2006 and it seem that I have to change the Certificate on Exchange so ISA Server and Exchange Server have the same certificate and same Subject Name, but changing this .. on Ex2k7 will have its effect on Outlook as Offline Address Book are now in IIS and OWA and Autodiscover.
I try to make another Forword DNS Zone that have the Name of the External Name, but Outlook still using the Internal Name
I did not went deeply in this .. as I dont want to distroy the system without knowning how to go back
I Make a Publishing Rule for OWA using ISA Server 2006 SP1 and when I test the rule I have this error
Testing URL https://www.external.com:443/OWA/
Category: Published server certificate error
Error details: 0x80090325 - The certificate chain was issued by an authority that is not trusted.
Action: Go to http://go.microsoft.com/fwlink/?LinkId=115965
and the client have this error
Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)
NOTE that the Certificate in ISA is placed in Trusted Root Certificate and Personal and Also Enterprise Trust.. ????
Any Help
Thanks
|
|
|
|
|
RE: Confused about Exchange 2007 Certificate.. Any Advi... - 28.Jul.2008 8:25:02 AM
|
|
|
paulo.oliveira
Posts: 792
Joined: 3.Jan.2008
From: Amazonas, Brazil
Status: offline
|
Hi,
you donīt need to have the same name for internal and extenal domain (split DNS).
About the error, you also have to import the certificate into ISAīs trust root CA if you not using a CA server.
Regards,
Paulo Oliveira.
|
|
|
|
|
RE: Confused about Exchange 2007 Certificate.. Any Advi... - 28.Jul.2008 9:30:32 AM
|
|
|
farisnt
Posts: 145
Joined: 27.Jun.2006
Status: offline
|
Hi
Regarding to SSL Error in ISA
I import the certificate to ISA Server Root Trusted CA .. and the error resume
|
|
|
|
|
RE: Confused about Exchange 2007 Certificate.. Any Advi... - 28.Jul.2008 11:12:54 AM
|
|
|
paulo.oliveira
Posts: 792
Joined: 3.Jan.2008
From: Amazonas, Brazil
Status: offline
|
Hi,
you have to import both certificates into root trust CA.
Regards,
Paulo Oliveira.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
