Hi,

Just enabled co-existence with 2013 and 2007.  We are having certs errors on OWA saying the cert is for the machine name (which is not trusted).  I had assigned a third-party cert to the iis service, but notice the built-in cert also is assigned to iis.  When I use a get-exchangecertificates in the admin shell it returns the certs from one of the backend mail servers, and not from the local CAS server?  Anyone have any idea what would cause this and how to resolve it?

Thank you,

Kurt

• Edited by k2009 Thursday, August 06, 2015 10:17 PM

The issue was resolved by going back to forms based auth on the owa and ecp virtual directories.

Don't know why the Get-ExchangeCertificate | fl was returning certs from another server, but if you use the -server argument with the local server name it returns local certs.

Kurt

It would return the certificates from another server if PowerShell is connected to that server instead of the local server, which can happen if the shell can't connect to the local server for some reason.