locked
Certificate request dissapears in Exchange 2010 SP1 Roll Up 4 RRS feed

  • Question

  • Hi Guys,

    I have setup test machines in my lab to learn and also test the migration process from Exchange 2003 to Exchange 2010.
    So i am using the Exchange Deployment Assitant by Microsoft and I am stuck at one of the steps for quite sometime and I need some help!

    I am at the point where I need to generate a new certificate request for my domain and assign it to the exchange services (POP,IMAP,IIS and SMTP)
    I am able to generate the request for my domain (alstar.com) and after I complete it I have 3 names listed

    alstar.com
    autodiscover.alstar.com
    legacy.alstar.com

    I have created a Certificate authority and I am able to generate a certificate from that but when I come back to the EMC in exchange 2010 and say "Complete Pending Request" it all goes well and the certicate is accepted by soon after I click finish the certifciate dissapears from the EMC and I am unable to assign services to it.
    I have done this probably 10 times now and also I have tried using the EMS but to no avail and in one of the posts on the ineternet someone had said try it without the autodiscover request so I did that too but the certifcate request still dissapears..

    Any Ideas??

    -A

    Tuesday, June 28, 2011 5:49 AM

Answers

  • I figured this out!

    As it turned out that the certification Authority server did not support SAN Certificates by default, so I  had to enable that first by using this command from an elevated command prompt

    Certutil –setreg policy\EditFlags –EDITF_ATTRIBUTESUBJECTALTNAME2

    Once completed restart the Certificate Service

    Now I can complete my Pending request and the certificate does not dissapear!!

    -A

    • Marked as answer by chaos_ali Tuesday, June 28, 2011 10:37 AM
    Tuesday, June 28, 2011 10:36 AM

All replies

  • I figured this out!

    As it turned out that the certification Authority server did not support SAN Certificates by default, so I  had to enable that first by using this command from an elevated command prompt

    Certutil –setreg policy\EditFlags –EDITF_ATTRIBUTESUBJECTALTNAME2

    Once completed restart the Certificate Service

    Now I can complete my Pending request and the certificate does not dissapear!!

    -A

    • Marked as answer by chaos_ali Tuesday, June 28, 2011 10:37 AM
    Tuesday, June 28, 2011 10:36 AM
  • Thank you for sharing the information to us. The information is useful to other forum users who have the same problem in future.

     

    Regards,

    Novak


    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    Tuesday, July 5, 2011 2:57 AM