This forum has migrated to Microsoft Q&A. Visit Microsoft Q&A to post new questions.

Remove From My Forums

GoDaddy SAN certificate untrusted on clients

Question
0

Sign in to vote

I have requested, downloaded and installed a godaddy SAN certificate for my lync server(s).

If I apply the certificate and try to log into lync 2010 on a new client I get "there was a problem verifying the certificate from the server"

If I install the godaddy intermediates certificate into the trusted root certification authorities on the windows 7 client it works ok.

I assumed windows 7 clients would automatically trust godaddy as a certificate authority....?

***Don't forget to mark helpful or answer***

Monday, March 31, 2014 9:53 AM

Answers

0

Sign in to vote
This issue occurs when the correct certificate is not installed on the computer. Because 1,024-bit certificates are rooted to 2,048-bit certificates, you may have to download and to install the required root certificate before you can successfully sign in to Office Communicator or to Lync.

Also you can refer below link

http://support.microsoft.com/kb/2014466
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
- Proposed as answer by Eason Huang Thursday, April 3, 2014 12:12 PM
- Marked as answer by Lisa.zheng Sunday, April 6, 2014 8:32 AM
Monday, March 31, 2014 6:51 PM

All replies

0

Sign in to vote

Hi, is the intermediate certificate installed on the Lync Front end server and is the chain for the cert on the Front End Valid?

What does the corresponding event state, and is your SIP domain different from your internal domain name?

Kind regards
Ben

Monday, March 31, 2014 12:01 PM
0

Sign in to vote
This issue occurs when the correct certificate is not installed on the computer. Because 1,024-bit certificates are rooted to 2,048-bit certificates, you may have to download and to install the required root certificate before you can successfully sign in to Office Communicator or to Lync.

Also you can refer below link

http://support.microsoft.com/kb/2014466
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
- Proposed as answer by Eason Huang Thursday, April 3, 2014 12:12 PM
- Marked as answer by Lisa.zheng Sunday, April 6, 2014 8:32 AM
Monday, March 31, 2014 6:51 PM
0

Sign in to vote

Yes the intermediate certificate is installed on the front end server and yes the chain is valid.

the sip domain and internal domain are the same.

I do not agree with mai ali as I use godaddy certificates with exchange all the time and they are trusted by win7 clients without installing the intermediates on ALL clients...
***Don't forget to mark helpful or answer***

Tuesday, April 8, 2014 8:28 AM