Home > Exchange, Exchange 2010, Microsoft, PowerShell > Gotcha when assigning Certificate to Exchange 2010 SP1

Gotcha when assigning Certificate to Exchange 2010 SP1


 

Quick one;

 

Quite often I will enable HTTP (i.e. disable the SSL requirement of IIS 7.5 in 2008 R2) access within IIS to allow me to do a neat HTTP to HTTPS redirect on the root folder.

 

This allows silly users to do the old “webmail.domain.com” syntax in their browser of choice and still get them to the /owa virtual directory.

 

However when you go to assign a certificate to this using EMC a warning is flagged;

 

Do you want to enforce SSL communication on the root web site? If not, rerun the cmdlet with the –DoNotRequireSSL parameter.

 

I clicked “no” (obviously) and the EMC process completed Successfully – i.e. with a nice big fat green tick Smile

 

However upon further inspection it appeared that it hadn’t completed – in fact the certificate hadn’t applied at all.

 

Running it from the EMS with the –DoNotRequireSSL parameter sorted me out, but surely if you answer no and therefore exit out of the process it should pass through an error output rather than a success?

 

Never mind Smile

Advertisements
  1. Frank B
    August 25, 2011 at 7:43 pm

    I did the same thing. Just like you, it didn’t work. So I did it again and at the request of the Go Daddy Tech helping me, we clicked yes this time.

    OOPSS…

    All kinds of things going on in the application log now, and I am unable to reach my root web folder on http:(80) . I went into IIS and turned off the require SSL flag on the root directory. Still doesn’t work.

    Any ideas whatelse that wizard may have changed by clicking yes?

  2. August 26, 2011 at 6:27 pm

    Clicking yes will require SSL on the root web directory – this is a setting within IIS as you have rightly found.

    Did you restart IIS (iisreset /noforce from cmd)? I’m pretty sure it requires it.

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: