locked
Edge server error message when running Validation wizard RRS feed

  • Question

  •  

    I have setup an OCS 2007 entreprise pool internally.
    Communicator and Live meeting are working great internally.
     
    I have install all EDGE roles on a simple box.  Ran all the wizard without any errors.
    I won't be using a director and I won't be using a Load Balancer.
     
    When I run the validation wizard, I get this error message : Failure.
     
    ACTION: Internal Next Hop server03.domain.local   
    ACTION information: DNS resolution succeeded : 192.168.69.3
    TLS connect failed due to incorrect remote subject name : 192.168.69.3:5061 outgoing TLS negociation failed.
     
    I can telnet from both servers on port 5061.
     
     
    Anyone have an idea.
     
    Regards
    JP
    Friday, November 23, 2007 10:03 PM

Answers

  • A little update to my previous post:

     

    In case you use an Enterprise Edition the Subject name of the installed certificate must match the FQDN of the pool.

    If you installed a Standard Edition Server then the subject name of the installed certificate must match the FQDN of the OCS Server.

     

    Lubo.

    Saturday, November 24, 2007 1:46 PM

All replies

  • Hi,

     

    Based on the information you have provided, check the following:

    • Does your internal OCS 2007 enterprise pool certificate has a subject name matching server03.domain.local? The subject name of the certifcate should match the FQDN of your pool.
    • If your Edge server is not member of the domain (which is the recommended configuration) you should install Root Certificate of the CA which issued the OCS 2007 enterprise pool certificate in the Computer Store / Trusted Root Certification Authorities of the Edge Server. This is required for the Edge server to trust the pool's certificate.

     

    Hope that helps.

    Lubo.

    Saturday, November 24, 2007 1:19 PM
  • A little update to my previous post:

     

    In case you use an Enterprise Edition the Subject name of the installed certificate must match the FQDN of the pool.

    If you installed a Standard Edition Server then the subject name of the installed certificate must match the FQDN of the OCS Server.

     

    Lubo.

    Saturday, November 24, 2007 1:46 PM
  • Thank you very much Ludomir.

     

    That was it.

     

    I was using the FQDN of the server instead of the pool.

     

    regards

    Saturday, November 24, 2007 1:57 PM
  • You are wellcome.

    I'm glad to hear you solved it.

     

    Lubo.

    Saturday, November 24, 2007 1:59 PM