How I got it to work... Re: Self signed certs sync issue, WM5 + SBS2003

1) Thank you John for your reply

2) I went to our server's secure site in IE on a computer that didn't have
the certificate already. I installed the certificate then used the mmc
certs tool to export it. I then exported into my WM5 device. At that point
I could go to the server's secure site w/o cert prompt.

3) Cleared old AS settings and soft reset.

4) Setup server to use SSL and away it went.


"Rosewood" <rosewod@xxxxxxxxxxxxxxxxxxx> wrote in message
news:Or54C1%23NGHA.2472@xxxxxxxxxxxxxxxxxxxxxxx
Let me dog pile on this one too!

SBS2003 using self signed certs. WM5 device on the WLAN trying to sync
with the exchange server. Sync works fine until SSL is enabled.

1) At first I got "0x80072f17" which means it didn't like my server's
certificate. I tried to disable cert checking in the registry
(HKCU\Software\Microsoft\Activesync\Partners\Secure , DWORD value of 0)
and that didn't do it so...

2) I exported my personal cert from my PC that was issued by my sbs2003
server. (Issued to my name, Issued by my current domain, valid
expieration date, with the intended purposes of EFS, Secure Email, and
Client Authentication) and imported that into my WM5 device. It showed up
in the certs window. I did a soft reboot, removed the server from
activesync, soft reboot again, synced and this time I got a different
error, 0x80072F0D, saying that my cert is invalid.



...

So, how do I make a valid certificate and get it out there so I can sync
using SSL?



.

Relevant Pages

  • Re: Web Certificate for IIS Server on SBS Domain
    ... Before your reply, I actually ran across rapidssl myself, and have ordered and installed the free 30-day certificate on my site. ... I explained what you'd told me about putting my existing configuration at risk by installing Cert Services, and he said he didn't know that. ... Again, if you're just needing a cert to install on your web server to provide SSL connectivity for remote users, go with an external third-party provider. ... When you add Certificate Services on an internal network, lots of internal communications will start using pieces provided by the Cert Server instead of the defaults from Server 2003, and when things blow up, they can blow up gloriously. ...
    (microsoft.public.windows.server.sbs)
  • Re: Activesync between Windows Mobile 5 and SBS2003 gives error
    ... If you don't find a cert here that matches the URL for OWA, you need to re-run the CEICW wizard on the SBS box and re-create the self signed cert. ... I exported the certificate straight from the server. ... Treo 700wx running Windows Mobile 5. ...
    (microsoft.public.windows.server.sbs)
  • Re: Terminal Services over a VPN
    ... Create a certificate request and submit it to godaddy in order to obtain a public cert. ... You can use the wizard in IIS Manager for this by creating a new website that matches the above name (on your TS server), right-click and choose properties, directory security tab, server certificate button. ... After the install you can stop or delete the website created above since you don't need it for anything. ...
    (microsoft.public.windows.terminal_services)
  • Re: SBS 2003 Premium and Cert Services
    ... that philosphy got blown out of the equation when SBS included Exchange OWA ... "Small Business Server" which is MS claim as to why the risk of exposing the ... the Certificate Server on another server, ... >> Cert, or you could edit the properties of your Certification Authority to ...
    (microsoft.public.windows.server.sbs)
  • Re: Web Certificate for IIS Server on SBS Domain
    ... and installed the free 30-day certificate on my site. ... instructions to install Certificate Services. ... If I can find a way to issue my own cert without risking my SBS setup, ... > Server instead of the defaults from Server 2003, and when things blow up, ...
    (microsoft.public.windows.server.sbs)