Petri.com forums Home Forums Start Page Forums Frequently Asked Questions FAQ Member List Members List
Go Back   Petri IT Knowledgebase Forums > Messaging Software > Exchange 2000 / 2003
Petri.com is happy to award RicklesP the title of Most Valuable Member !!!
Register Calendar Calendar Search Petri IT Knowledgebase Forums Search Todays Posts Today's Posts Mark Forums Read
Notices

Exchange 2003 OWA Broken after SSL Certificate Renewal

Exchange 2003 OWA Broken after SSL Certificate Renewal

this thread has 5 replies and has been viewed 7378 times

Closed Thread
 
Thread Tools Search this Thread Display Modes
  #1  
Old 14th January 2010, 17:14
GhostyDog GhostyDog is offline
Casual
Casual
 
 Join Date: Nov 2008
  6 month star 12 month star
 Posts: 20
 Reputation: GhostyDog is on a distinguished road (19)
Default Exchange 2003 OWA Broken after SSL Certificate Renewal

Hi,
Our SSL Certificate is due to expire in a little under a month, I have renewed the Certificate with our provider Go Daddy and the only difference is that they stipulated we have to use 2048 bit key for the CSR request. I created the request using IIS on Windows Server 2008 R2 and the request was accepted by Go Daddy and new certificates were issued.

I imported the new certificate into the Personal Store of our Exchange Server and replaced the old cert with the new one via IIS.

As soon as I did this https ceased to function, not even a server error, just nothing, like there is no site there. I tried an iis reset but this didn't resolve the issue.

I have replaced the original certificate and this resolved the problem.
I'm running Windows Server 2003 R2 with Exchange 2003 Enterprise.

Thanks for any input.

Sean
  #2  
Old 15th January 2010, 00:27
Sembee's Avatar
MVP Sembee Sembee is offline
MVP
MVP
 
 Join Date: Apr 2006
  6 month star 12 month star
 Location: Newbury, UK
 Posts: 6,500
 Reputation: Sembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud of (1127)
Default Re: Exchange 2003 OWA Broken after SSL Certificate Renewal

Why did you use IIS on Windows 2008 and not IIS on the Exchange server itself?
It sounds like you may have a corrupt certificate, so will need to get it reissued from a new request.

Simon.
__________________
--
Simon Butler
Exchange MVP

Blog: http://blog.sembee.co.uk/
More Exchange Content: http://exchange.sembee.info/
Exchange Resources List: http://exbpa.com/
In the UK? Hire me: http://www.sembee.co.uk/

Sembee is a registered trademark, used here with permission.
  #3  
Old 15th January 2010, 12:19
GhostyDog GhostyDog is offline
Casual
Casual
 
 Join Date: Nov 2008
  6 month star 12 month star
 Posts: 20
 Reputation: GhostyDog is on a distinguished road (19)
Default Re: Exchange 2003 OWA Broken after SSL Certificate Renewal

Quote:
Originally Posted by Sembee View Post
Why did you use IIS on Windows 2008 and not IIS on the Exchange server itself?
It sounds like you may have a corrupt certificate, so will need to get it reissued from a new request.

Simon.
the only way I could generate a new csr on that box was to remove the existing certificate, if you renew you don;t get the option to change the bit strength of the RSA key.

My provider now requires 2048 bit the old key was 1024 bit.
  #4  
Old 15th January 2010, 17:47
Sembee's Avatar
MVP Sembee Sembee is offline
MVP
MVP
 
 Join Date: Apr 2006
  6 month star 12 month star
 Location: Newbury, UK
 Posts: 6,500
 Reputation: Sembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud ofSembee has much to be proud of (1127)
Default Re: Exchange 2003 OWA Broken after SSL Certificate Renewal

So?
Just create another web site on the existing server. Then do the certificate request/response in that web site. Once complete, you can switch the other main site to the live certificate by simply running the certificate wizard and choosing to select an existing certificate.

However I don't think that was the problem - I think it is a corrupt certificate.

Simon.
__________________
--
Simon Butler
Exchange MVP

Blog: http://blog.sembee.co.uk/
More Exchange Content: http://exchange.sembee.info/
Exchange Resources List: http://exbpa.com/
In the UK? Hire me: http://www.sembee.co.uk/

Sembee is a registered trademark, used here with permission.
  #5  
Old 18th January 2010, 12:54
GhostyDog GhostyDog is offline
Casual
Casual
 
 Join Date: Nov 2008
  6 month star 12 month star
 Posts: 20
 Reputation: GhostyDog is on a distinguished road (19)
Default Re: Exchange 2003 OWA Broken after SSL Certificate Renewal

I've rekey'd the certificate this morning and now my exchange server has the option to replace the certificate greyed out ((((
  #6  
Old 18th January 2010, 13:16
GhostyDog GhostyDog is offline
Casual
Casual
 
 Join Date: Nov 2008
  6 month star 12 month star
 Posts: 20
 Reputation: GhostyDog is on a distinguished road (19)
Default Re: Exchange 2003 OWA Broken after SSL Certificate Renewal

Right got this working by completing the key request on the new site. that's great exported the cert as a pfx file and imported onto our sharepoint box and that's worked fine too.

Imported onto another box though and when I go tor eplace the existing the cert the new one doesn't appear in the list.

Any idea's?
Closed Thread


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OWA and OAB no longer work after changes to incorporate SSL certificate Relentim Exchange 2007 / 2010 / 2013 3 16th December 2009 16:09
ssl certificate for owa....exch 2007 sp2 mlabs Exchange 2007 / 2010 / 2013 2 13th November 2009 02:23
OWA SSL Certificate shades Exchange 2000 / 2003 5 28th May 2009 21:49
Renew OWA SSL Certificate using own certificate authority oguest Exchange 2000 / 2003 1 15th October 2007 17:43
Expiring OWA SSL Certificate krj General Security 1 20th January 2007 20:02


All times are GMT +3. The time now is 03:02.

Steel Blue 3.5.4 vBulletin Style ©2006 vBEnhanced
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
 

Valid XHTML 1.0!   Valid CSS!

Copyright 2005 Daniel Petri