My tech quit and I am winging it and need some guidance.
I am running a 2008 R2 server with Exchange 2010. I am a bit behind on updates so I ran a windows server update on July 24 2014. Up to that time my IMAP and POP3 SSL connections were working correctly. Now I get this error from MS test connectivity site.
The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server mail.mydomain.com on port 995. The Microsoft Connectivity Analyzer wasn't able to obtain the remote SSL certificate.
The certificate couldn't be validated because SSL negotiation wasn't successful. This could have occurred as a result of a network error or because of a problem with the certificate installation.
TheOWA and everything else still works but IMAP and POP3 need SSL turned off to work. I have spent days reading and trying to figure this out. I have not been able to find what changed but have learned a lot.
Any idea as to what update broke the system? Do I need to somehow reinstall the SSL cert?
If I go to Exchange Management Console and look at the server configuration for Exchange Certificates I have 2 of them listed. One self signed true with service of SMTP and one is false with IIS & SMTP. Under the status tab it says ‘The certificate is valid for Exchange Server Usage’.
If I add IMAP and POP to one or both will it solve my problem? Or will I be creating more problems?
The MMC gives me one more cert to look at, but when you look at it you see the following:
This CA Root Certificate is not trusted. To enable trust install this certificate in the Trusted Root Certification Authorities store.
The CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.