edge cert problem RRS feed

  • Question

  • i think i have many problems and i hope now anyone can help me

    i have 1 ocs server and 1 ocse edge server (with all roles) in the dmz (2 network cards one ip at the lan one at the dmz)
    i have a certificate buy from thawte and this is installed at the edge server in iis but not in the ocs tool

    is that right?
    wich ports must i open at the firewall?
    how can i see it works?

    Monday, September 8, 2008 7:11 AM

All replies

  • Did you use the OCS Certificae Wizard to create the request and later install the certificate?  If you used IIS, the Certificate snap-in to do so then OCS will not be utilizing it.  Either re-run the wizard or go to the server propertie's Interfaces tab to select a local cerificate for each Edge role interface.


    The Edge Deployment Guide contains all of the require port details:


    Monday, September 8, 2008 12:28 PM
  • the problem is that the cert from thawte not display at the certificate wizard from ocs

    Monday, September 8, 2008 1:49 PM
  • You should select the option to Create a New Certificate and then the option to Prepare the request now, but send it later.


    Then the wizard will prompt you to save the cert request to a text file which you then provide to the third-party when requesting one.  If you already have a certificate purchased and installed on the local server, you can simply apply it to the OCS services using the Certificate tab under each server role's properties.  But if you didn't create the original request correctly (e.g. SIP domains included in the SAN) then you may need to run through the process again.


    Monday, September 8, 2008 5:50 PM