• RSS
  • Twitter
  • FaceBook

Exchange Server Forums

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Issues with CAS and a SAN cert in Exch 2007 Cluster

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Microsoft Exchange 2007] >> Outlook Web Access >> Issues with CAS and a SAN cert in Exch 2007 Cluster Page: [1]
Login
Message << Older Topic   Newer Topic >>
Issues with CAS and a SAN cert in Exch 2007 Cluster - 16.May2011 3:04:41 PM   
patricka

 

Posts: 3
Joined: 16.May2011
Status: offline 		Our company has a clustered Exchange 2007 environment with 2 exchange servers, 2 hub transport servers, and 2 client access servers. For naming purposes I'll refer to each as name1 or name2. Last night, I installed a SAN cert on CAS1 and did not run into any issues. When I tried to install the same cert on CAS2, it said the privatekey was missing. CAS2 was removed from our network load balancing to get email back up. I contacted DigiCert and they said create a new CSR for CAS2. I was able to install the new cert without any issues. When I re-enabled the network load balancing, any users who connected to CAS2 weren't able to connect to Outlook Web Access. Is there something I did wrong in the setup or are there any steps I missed in the process of upgrading the SAN cert?

Thanks,

Patrick
Post #: 1
RE: Issues with CAS and a SAN cert in Exch 2007 Cluster - 16.May2011 9:25:49 PM   
RustyShackleford

 

Posts: 217
Joined: 13.Jan.2010
Status: offline 		Did you include both server names (CAS1 and CAS2) when you requested the SAN cert? 

Can you export the key from CAS1?

(in reply to patricka)
Post #: 2
RE: Issues with CAS and a SAN cert in Exch 2007 Cluster - 17.May2011 11:40:03 AM   
patricka

 

Posts: 3
Joined: 16.May2011
Status: offline 		I backed up the new copy of the SAN cert and tried the original one on CAS1 with the exported key but still ran into the same issue. The odd part is if I go to https://localhost/owa on either CAS server, I'm able to connect to OWA but if I put CAS2 back into the network load balance cluster, it doesn't forward any users to OWA.

(in reply to RustyShackleford)
Post #: 3
RE: Issues with CAS and a SAN cert in Exch 2007 Cluster - 17.May2011 12:32:31 PM   
RustyShackleford

 

Posts: 217
Joined: 13.Jan.2010
Status: offline 		How are you CAS servers accessed from the Internet?  ISA / TMG?

Did you get the SSL cert assigned to the IIS and SMTP services?

(in reply to patricka)
Post #: 4
RE: Issues with CAS and a SAN cert in Exch 2007 Cluster - 17.May2011 12:34:40 PM   
patricka

 

Posts: 3
Joined: 16.May2011
Status: offline 		The cert is assigned to POP, IMAP, and IIS. I did not assign SMTP to the cert on CAS2 because the service isn't enabled on the cert for CAS1.

(in reply to RustyShackleford)
Post #: 5
RE: Issues with CAS and a SAN cert in Exch 2007 Cluster - 17.May2011 9:17:44 PM   
RustyShackleford

 

Posts: 217
Joined: 13.Jan.2010
Status: offline 		Good eye for noticing - I was wrong to include SMTP. I included SMTP I have the HT role on the same server as our CAS.

How are you CAS servers accessed from the Internet? ISA / TMG?

(in reply to patricka)
Post #: 6

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Microsoft Exchange 2007] >> Outlook Web Access >> Issues with CAS and a SAN cert in Exch 2007 Cluster Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Follow TechGenix on Twitter