Here is some notes from a recent issue error that I encountered at a client with SSL certificates for an Exchange 2010 server.
This error may be seen on Exchange Server 2010. It may occur even though the certificate is a public certificate, from a trusted provider e.g. GlobalSign, Verisign or anyone else. Although it is most often seen when using certificates from a private PKI infrastructure. This blog post will focus on the usage of a public certificate, in this case from GlobalSign.
The error: The certificate is invalid for exchange server usage
It is shown in the Exchange Management Console (EMC) as:
The reason for the error is because the certificate cannot be verified to a trusted Certificate Authority.
The certificate chain is broken, because of a missing or wrong Intermediate or Root CA in the Certificate store of the Exchange 2010 server.
Make sure you have the correct Intermediate and Root CA from the provider (validate with your provider, that you have the correct ones) and make sure they are imported into the Certificate store. They should be imported into the correct destination of the Certificate Store of the Computer (Exchange Server), such as Trusted Root Certification Authorities (holds the Root CA) and Intermediate Certification Authorities (holds the Intermediate CA), as shown below:
When you have imported or validated the correct versions, the next time you start the Exchange Management Console, the certificate will now be listed as valid, as shown below:
1st July 2011, I received an email from Microsoft and I am delighted to share that I have been awarded “Microsoft Most Valuable Professional (MVP) 2011” for the fourth consecutive year. Altough now I have been awarded in Exchange Server MVP, previously I was IIS MVP.
I would like to thank everyone who have supported me in any form, especially my friends, family, colleagues, community partners, MVPs, MVP Lead and of course Microsoft in Redmond.
As usual Microsoft has put all the sessions from this years TechEd online at www.msteched.com.
I have compiled a list of interesting UC sessions within:
- Exchange 2010
- Lync 2010
- Office 365
All session links include a webcast of the session along with the powerpoint.
Microsoft is doing a free 3 day webinar on Office 365 for IT professionals.
The agenda is:
Day One — “Office 365 Platform” May 24, 2011 | 10am-4pm PDT | Live online training
• Microsoft Office 365 Overview for IT Pros
• Deploying Clients for Office 365
• Administration & Automation using PowerShell
• Identity and Access Solutions
• Directory Synchronization
Day Two — “Exchange Online” May 25, 2011 | 10am-4pm PDT | Live online training
• Exchange Online Overview for IT Pros
• Exchange Online Administration
• Staged Exchange Online Migration
• Hybrid Options with Exchange Server & Exchange Online
• Exchange Online Archiving & Compliance
Day Three — “Lync & SharePoint Online” May 26, 2011 | 10am-4pm PDT | Live online training
• Lync Online Overview & Configuration for IT Pros
• SharePoint Online Overview
• SharePoint Online Administration
• SharePoint Online Extensibility & Customization
• Office 365 Deployment Overview
More details can be found on the event website, along with registion: https://www.eventbuilder.com/microsoft/event_desc.asp?p_event=x8f7i41r
Together with CoLabora and IT-experts, I have arranged a 1 day User Group event on June 22nd at Microsoft Denmark in Hellerup, Copenhagen, it is free to register for the event.
The agenda is:
9.15-10.00 Direct Access v/ Jens Ole Krogh
10.00-10.30 Exchange ActiveSync Policies v/ Flemming Riis
10.45-11.15 DPM og Exchange 2010 v/ Flemming Riis
11.15-12.00 Office 365 session
13.00-13.45 Lync nyheder v/ Dennis Lundtoft Thomsen
13.45-14.30 Exchange 2010 SP2 nyheder v/ Peter Schmidt
15.00-15.45 Lync Windows Phone App integration og demo af Lync for Windows Phone v/ Mikkel Bach Nielsen fra Microsoft
15.45-16.15 Debat om Lync switchboard løsninger
Read more at CoLabora and register for the event at Eventbrite.
The Exchange Team has announced SP2 for Exchange 2010, it is scheduled for release in the second half of 2011.
The SP2 includes the following major new features:
- Outlook Web App (OWA) Mini: A browse-only version of OWA designed for low bandwidth and resolution devices. Based on the existing Exchange 2010 SP1 OWA infrastructure, this feature provides a simple text based interface to navigate the user’s mailbox and access to the global address list from a plurality of mobile devices.
- Cross-Site Silent Redirection for Outlook Web App: With Service Pack 2, you will have the ability to enable silent redirection when CAS must redirect an OWA request to CAS infrastructure located in another Active Directory site.
- Hybrid Configuration Wizard: Organizations can choose to deploy a hybrid scenario where some mailboxes are on-premises and some are in Exchange Online with Microsoft Office 365.
- Address Book Policies: Allows organizations to segment their address books into smaller scoped subsets of users providing a more refined user experience than the previous manual configuration approach. They blogged about this feature earlier: GAL Segmentation, Exchange Server 2010 and Address Book Policies.
- Customer Requested Fixes: All fixes contained within update rollups released prior to Service Pack 2 will also be contained within SP2.
Read more at the Exchange Team blog.
Not able to attend TechEd 2011 currently in progress this week in Atlanta. No worries, you can find all sessions online and watch them when you have time for it at www.msteched.com.
Great news from the Exchange team today. They have announced enhancements to the virtualization support of Microsoft Exchange Server 2010 running with SP1.
With Exchange SP1 the following scenarios are now supported running under hardware virtualization:
The Unified Messaging server role is supported in a virtualized environment.
Combining Exchange 2010 high availability solutions (database availability groups (DAGs)) with hypervisor-based clustering, high availability, or migration solutions that will move or automatically failover mailbox servers that are members of a DAG between clustered root servers, is now supported.
A new Best Practices for Virtualizing Exchange Server 2010 with Windows Server 2008 R2 Hyper-V whitepaper has also been released.
Read more about these enhancements on the Exchange Team blog.