Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

re: Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

Mark — Tue, 13 Jan 2009 22:12:55 GMT

Thanks,

I re-ran the "setup your internet address" wiz, intered the public FQDN I assigned to the IP, and then it finished. I checked my recipient policies, and it modified the policy, but modified it correctly, and got rid of the 'localdomain.local' address, which I didn't need anyway. I then re-ran the 'fix my network' wizard expecting it to re-create the certificate install package in the public\downloads folder, but it didn't. I tried installing the package anyway, and it worked. I'm not sure why I'm not finding a cert, or installation package with a new date, but it's working.

Thanks for the help.

re: Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

David Overton — Mon, 12 Jan 2009 23:42:28 GMT

Mark,

re-run the wizard - I ran it about 15 times this weekend. It will re-create your cert for you. Also, when you get to the "domain name" section, there is an advanced button that describes your "remote" name.

Thanks

David

re: Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

Mark — Mon, 12 Jan 2009 23:24:46 GMT

I've setup a name for my IP, but I still can't find anywhere how to create a new cert in 2008 SBS. If I run the "add a trusted cert" wiz, it asks if I want to buy one, or use an existing one. I don't want to buy one, but want to have my server re-create one with the correct name. (remote.pubdomain.com instead of remote.localdomain.local)

I see that if I run the "setup your Internet Address" wiz, I can re-enter my domain name, and this might be where I'd put in the public FQDN, but I'm afraid this might screw with who-knows-what other configurations. I was very comfortable re-running CEICW in 2003 and changing the name to an IP, and this is all it fixed. I ran the "fix your network" here in 2008, - it just ran.. ran.. and finished, and it screwed with my recipient policies! So 2008 wizards are still a little scary to me.

Thanks for the previous response, and any other advice.

re: Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

David Overton — Tue, 06 Jan 2009 22:19:19 GMT

Mark,

the self-issued certificate that SBS uses can be found at \\<yourserver>\public\public downloads - you should see a zip and directory with the self-signed certificate. If you use an IP address then it may not work both inside and outside your network - better to use a name. So uninstall the old cert, install the newly created self-signed certificate and away you go.

So, my advice, buy a domain, register it and use a dynamic dns service if required (if you don't have a fixed IP address) otherwise e-mail can't come in and the certs will fail.

Thanks

David

re: Invalid certificate issued to localhost.localdomain when remotely access SBS 2008 from a Windows PC

mark — Tue, 06 Jan 2009 16:28:30 GMT

Thanks for the info, but you say you had to "install the correct new certificate". I don't want to buy a cert, so how do I have the server create a new certificate? I guess I need a cert with the IP address in the name since I'll be using the IP to get to RWW? Or am I off track?