Re: Mismatched Address
- From: "Charlie Russel - MVP" <charlie@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 28 Jul 2009 15:07:21 -0700
You need to have your public DNS record point to remote.mydomain.com. This is NOT the DNS that you host in Active Directory for mydomain.local. It is the DNS that either your ISP or your DNS provider hosts for you. That DNS A record should resolve to the IP address of the WAN side of your internet router. (Or, in a dual NIC SBS 2k3 that doesn't have a router in front of it, to the IP address of the internet facing NIC on your SBS box.)
--
Charlie.
http://msmvps.com/blogs/xperts64
http://mvp.support.microsoft.com/profile/charlie.russel
"thejamie" <thejamie@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:8DF07D2A-BB16-48B2-8224-BC4FA71A5071@xxxxxxxxxxxxxxxx
Hi,
I attempted in the past to install a goDaddy certificate on my SBS server
back in May of 2009. I spent the full thirty days trying to install and then
when I still had no success, I revoked the certificate and vowed to try again
when I had time.
My error is only on the internet side - internally everything works fine.
The error from the internet side is "Mismatched Address"
The security certificate presented by this server was issued to a different
web site's address.
If I view the certificate it says: (will replace the actual domainname w/
"mydomain")
Certificate Information
This certificate is intended for the following purpose(s):
Ensures the identity of the remote computer
*Refer to the certification authority's statement for details.
Issued to remote.mydomain.com
Issued by Go Daddy Secure Certification Authority
Valid from xx/xx/2009 to xx/xx/2011
_____________________________________________
I followed the directions at
http://www.smallbizserver.net/Articles/tabid/266/articleType/ArticleView/ArticleID/283/PageID/470/Default.aspx
In these directions, the certificate common name is "remote.company.com".
In an effort to follow the instructions as is, I varied from my attempt three
months ago and used the remote.mydomain.com rather than www.mydomain.com.
Apparently this has nothing to do with the error as it is the same for both
of the issues of the certificate.
Go Daddy experts have explained to me that I need to have a site called
remote.mydomain.com. We even made an attempt to create a Host(A) record
called remote, but it will only resolve to remote.mydomain.local.
Also tried to create a CNAME(alias) of remote and allow it to resolve to the
domain server name:
universe.mydomain.local
(Universe is the server name that houses the pdc).
Is there another set of directions somewhere that will work? I am running
SBS2003 Premium. It has been running without incident since 2006 up until
IE7 came out and started telling my users that the certificate was
self-signed and could not be trusted.
Please help.
(I have started a new thread and made a comment as such in the previous
thread.)
--
Regards,
Jamie
.
- Follow-Ups:
- Re: Mismatched Address
- From: SuperGumby [SBS MVP]
- Re: Mismatched Address
- References:
- Mismatched Address
- From: thejamie
- Mismatched Address
- Prev by Date: Re: CEICW after loading third party certificate
- Next by Date: Re: CEICW after loading third party certificate
- Previous by thread: Mismatched Address
- Next by thread: Re: Mismatched Address
- Index(es):
Relevant Pages
|
