Question : the security certificate presented by this website was issued for a different website's address

Hi All,

We have an SSL certificate installed on our SBS 2003 server which seems to have stopped working. The only thing that has changed is our external IP, but an A record of mail.*.* has been updated with this IP.

Everything that was relating to the old IP has been updated to new IP in ISA rules, OWA, OMA access rules etc.

Normally, so that we can recieve emails over RPC over HTTP, we install the security certificate, but upon restarting IE after this, we get the following message: the security certificate presented by this website was issued for a different website's address.

We are doing everything exactly the same as before, including typing the full address in IE.


Any help would be appreiciated
Thanks

Answer : the security certificate presented by this website was issued for a different website's address

Gotcha.  I would suggest trying to use a CA issued cert so you can use the SAN attribute.  The SAN is used to add additional names to the same cert when you submit the CSR to the CA.

If you dont' already have a CA set up, for something quick and easy you can look into XCA - free opensource and relatively quick to get going.  Make a self-signed root cert for itself and import that into the trusted root store like you did for the self-generated cert before - can use GPO to deploy that.  Since the root is trusted, all the certs it issues are trusted too.

Then you can create a CSR, which is a well documented process for most applications, and submit to the CA and add the SAN attribute to it to include the additional names, aliases, ip addresses, whatever you need.

If you already have a windows CA up and running, you may need to enable the SAN attribute on the CA to support that - let me know if you need help with any of that.