Re: SMTP and IMAP SSL Certificates
- From: "Bharat Suneja [MVP]" <bharatsuneja@xxxxxxxxxxx>
- Date: Thu, 17 Aug 2006 11:11:33 -0700
For the sake of convenience (and if there's really no other use for an
internal CA), I would go with a cheaper cert from a recognized CA. Given the
prices of these certs, it's not worth installing and maintaining an
internal/in-house CA for issuing 1 or 2 certs, imo.
If you're just interested in figuring out what's going on and don't care how
much time you spend on this as long as you understand/learn something,
continue troubleshooting. Check if the CA appears as a Trusted Root CA in
the **computer's account** - from the certficates snap-in.
--
Bharat Suneja
MVP - Exchange
www.zenprise.com
NEW blog location:
www.exchangepedia.com/blog
----------------------------------------------
"omgitsmit" <OMGITSmit@xxxxxxxxx> wrote in message
news:1155837305.289067.10690@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I made sure i did install the CA as an Enterprise CA.
I found a great MS article that lets you create a .asp html document
which you can store on your IIS web server. When the client opens that
.asp page it prompts you to install and trust the certificate i
specify.
So far, thats not working either.
I may just buy the $25 certificate, any special place i should start
looking?
Bharat Suneja [MVP] wrote:
Most likely the CA you installed is not an Enterprise CA (gets published
in
AD).
Add the CA as a trusted CA on the client side. Can be done from AD as
well.
This may help:
http://support.microsoft.com/default.aspx?scid=kb;en-us;q313197&sd=tech
--
Bharat Suneja
MVP - Exchange
www.zenprise.com
NEW blog location:
www.exchangepedia.com/blog
----------------------------------------------
"omgitsmit" <OMGITSmit@xxxxxxxxx> wrote in message
news:1155827881.783378.139320@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
I created a SSL certificate locally with a local CA on the domain
controller. I applied this certificate to my IMAP and SMTP virtual
servers in Exchange 2003, which is also located on the very same
server.
Whenever my clients or i connect to check our mail, i get a "Internet
Security Warning" window that states "The server you are connected to
is using a security certificate that could not be verified. A
certificate chain processed, but terminated in a root certificate which
is not trusted by the trust provider. Do you want to continue using
this server?"
In order to initiate the SSL connection for email, you would have to
accept this message every time you open up Outlook 2003.
Is there anyway to get the CA server to trust this certificate? It
sounds like it's the client side that doesn't trust the certificate,
now that i really think about it.
Any help would be greatly appreciated!
.
- Follow-Ups:
- Re: SMTP and IMAP SSL Certificates
- From: omgitsmit
- Re: SMTP and IMAP SSL Certificates
- References:
- SMTP and IMAP SSL Certificates
- From: omgitsmit
- Re: SMTP and IMAP SSL Certificates
- From: Bharat Suneja [MVP]
- Re: SMTP and IMAP SSL Certificates
- From: omgitsmit
- SMTP and IMAP SSL Certificates
- Prev by Date: Re: 550 5.7.1 access denied Email Problem
- Next by Date: Re: Removing 2nd Exchange Server
- Previous by thread: Re: SMTP and IMAP SSL Certificates
- Next by thread: Re: SMTP and IMAP SSL Certificates
- Index(es):
Relevant Pages
|
