+ Post New Thread
Results 1 to 3 of 3
Enterprise Software Thread, Arrgh Exchange in Technical; Welcome to the Exchange Management Shell! Full list of cmdlets: get-command Only Exchange cmdlets: get-excommand Cmdlets for a specific role: ...
  1. #1
    wesleyw's Avatar
    Join Date
    Dec 2005
    Location
    Kingswinford
    Posts
    2,207
    Thank Post
    225
    Thanked 50 Times in 44 Posts
    Blog Entries
    1
    Rep Power
    30

    Arrgh Exchange

    Welcome to the Exchange Management Shell!

    Full list of cmdlets: get-command
    Only Exchange cmdlets: get-excommand
    Cmdlets for a specific role: get-help -role *UM* or *Mailbox*
    Get general help: help
    Get help for a cmdlet: help <cmdlet-name> or <cmdlet-name> -?
    Show quick reference guide: quickref
    Exchange team blog: get-exblog
    Show full output for a cmd: <cmd> | format-list

    Tip of the day #63:

    Do you want an easy way to apply deleted item retention limits across multiple d
    atabases and servers? Try the following command to configure deleted item retent
    ion across all databases on a specified server:

    Get-MailboxDatabase -Server <Server Name> | Set-MailboxDatabase -ItemRetention
    45.00:00:00

    You can also apply the same deleted item retention limits or mailbox retention l
    imits across all servers in your organization:

    Get-MailboxDatabase | Set-MailboxDatabase -ItemRetention 45.00:00:00 -MailboxRe
    tention 120.00:00:00

    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName *.qmgs.walsall.sch.
    uk
    Get-ExchangeCertificate : Cannot bind parameter 'DomainName'. Cannot convert va
    lue "*.qmgs.walsall.sch.uk" to type "Microsoft.Exchange.Data.SmtpDomain". Error
    : "Invalid SMTP domain"
    At line:1 char:36
    + Get-ExchangeCertificate -DomainName <<<< *.qmgs.walsall.sch.uk
    + CategoryInfo : InvalidArgument: ( [Get-ExchangeCertificate],
    ParameterBindingException
    + FullyQualifiedErrorId : CannotConvertArgumentNoMessage,Microsoft.Exchang
    e.Management.SystemConfigurationTasks.GetExchangeC ertificate

    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName qmgs.walsall.sch.uk

    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName mail.qmgs.walsall.s
    ch.uk
    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName *.qmgs.walsall.sch.
    uk
    Get-ExchangeCertificate : Cannot bind parameter 'DomainName'. Cannot convert va
    lue "*.qmgs.walsall.sch.uk" to type "Microsoft.Exchange.Data.SmtpDomain". Error
    : "Invalid SMTP domain"
    At line:1 char:36
    + Get-ExchangeCertificate -DomainName <<<< *.qmgs.walsall.sch.uk
    + CategoryInfo : InvalidArgument: ( [Get-ExchangeCertificate],
    ParameterBindingException
    + FullyQualifiedErrorId : CannotConvertArgumentNoMessage,Microsoft.Exchang
    e.Management.SystemConfigurationTasks.GetExchangeC ertificate

    [PS] C:\Windows\system32>Import-ExchangeCertificate -Path C:\wildcard.pfx | Enab
    le-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS"
    Import-ExchangeCertificate : The source data cannot be imported or the wrong pa
    ssword was specified.
    At line:1 char:27
    + Import-ExchangeCertificate <<<< -Path C:\wildcard.pfx | Enable-ExchangeCerti
    ficate -Services "SMTP, IMAP, POP, IIS"
    + CategoryInfo : ReadError: (0:Int32) [Import-ExchangeCertificate
    ], ImportCertificateDataInvalidException
    + FullyQualifiedErrorId : 54C864FA,Microsoft.Exchange.Management.SystemCon
    figurationTasks.ImportExchangeCertificate

    [PS] C:\Windows\system32>Import-ExchangeCertificate -Path C:\wildcard2.pfx | Ena
    ble-ExchangeCertificate -Services "SMTP, IMAP, POP, IIS"
    Enable-ExchangeCertificate : The certificate with thumbprint FC95F9670B0951D27A
    2CF686458754CBCFC015EC was found but is not valid for use with Exchange Server
    (reason: PrivateKeyMissing).
    At line:1 char:79
    + Import-ExchangeCertificate -Path C:\wildcard2.pfx | Enable-ExchangeCertificat
    e <<<< -Services "SMTP, IMAP, POP, IIS"
    + CategoryInfo : NotSpecified: ( [Enable-ExchangeCertificate],
    CertificateNotValidForExchangeException
    + FullyQualifiedErrorId : EEEDEB90,Microsoft.Exchange.Management.SystemCon
    figurationTasks.EnableExchangeCertificate

    [PS] C:\Windows\system32>certutil -repairstore my "0d7c2e"
    my
    ================ Certificate 0 ================
    Serial Number: 0d7c2e
    Issuer: CN=RapidSSL CA, O=GeoTrust, Inc., C=US
    NotBefore: 12/08/2013 22:13
    NotAfter: 14/09/2015 18:32
    Subject: CN=*.qmgs.walsall.sch.uk, OU=Domain Control Validated - RapidSSL(R), OU
    =See Read the RapidSSL agreements for free SSL certificates, wildcard SSL certificates and other RapidSSL products. (c)13, OU=GT78473402, SERIALNUMBER=LKtTJwrS7
    QblNzEN8eymcBca33AWO9qE
    Non-root Certificate
    Template:
    Cert Hash(sha1): fc 95 f9 67 0b 09 51 d2 7a 2c f6 86 45 87 54 cb cf c0 15 ec
    Key Container = {C39CEBDB-2392-4300-8D85-3E505FBDFD7B}
    Unique container name: 2d55322882864184160930b8b491551c_7b20c0f2-df37-4199-9e2
    5-a0bbd6c719a8
    Provider = Microsoft Enhanced Cryptographic Provider v1.0
    Encryption test passed
    CertUtil: -repairstore command completed successfully.
    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName "*.qmgs.walsall.sch
    .uk"
    Get-ExchangeCertificate : Cannot bind parameter 'DomainName'. Cannot convert va
    lue "*.qmgs.walsall.sch.uk" to type "Microsoft.Exchange.Data.SmtpDomain". Error
    : "Invalid SMTP domain"
    At line:1 char:36
    + Get-ExchangeCertificate -DomainName <<<< "*.qmgs.walsall.sch.uk"
    + CategoryInfo : InvalidArgument: ( [Get-ExchangeCertificate],
    ParameterBindingException
    + FullyQualifiedErrorId : CannotConvertArgumentNoMessage,Microsoft.Exchang
    e.Management.SystemConfigurationTasks.GetExchangeC ertificate

    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName "qmgs.walsall.sch.u
    k"
    [PS] C:\Windows\system32>Get-ExchangeCertificate -DomainName "mail.qmgs.walsall.
    sch.uk"

    Thumbprint Services Subject
    ---------- -------- -------
    FC95F9670B0951D27A2CF686458754CBCFC015EC ..... CN=*.qmgs.walsall.sch.u...


    [PS] C:\Windows\system32>Enable-ExchangeCertificate

    cmdlet Enable-ExchangeCertificate at command pipeline position 1
    Supply values for the following parameters:
    Services: SMTP,IIS,IMAP,POP
    Thumbprint: FC95F9670B0951D27A2CF686458754CBCFC015EC
    Enable-ExchangeCertificate : An unexpected error occurred while the forms-based
    authentication settings for path /LM/W3SVC/1 were being modified. The error re
    turned was 5506.
    At line:1 char:27
    + Enable-ExchangeCertificate <<<<
    + CategoryInfo : NotSpecified: ( [Enable-ExchangeCertificate],
    FormsAuthentica...UnknownSetError
    + FullyQualifiedErrorId : 25114584,Microsoft.Exchange.Management.SystemCon
    figurationTasks.EnableExchangeCertificate

    [PS] C:\Windows\system32>Get-ExchangeCertificate

    Thumbprint Services Subject
    ---------- -------- -------
    FC95F9670B0951D27A2CF686458754CBCFC015EC ...W. CN=*.qmgs.walsall.sch.u...
    80866F7BC701B7503E7AB759FE9AFC5C38EBC34A IP..S CN=Blackham
    D14EB8DD8A4EF1592BF97F1BBBD21696A2C4E652 IP..S CN=Blackham
    05052FE805174148170EE85BD3559BEC111BBB13 IP... CN=Blackham


    [PS] C:\Windows\system32>Enable-ExchangeCertificate -Services "SMTP, IMAP, IIS,
    POP"

    cmdlet Enable-ExchangeCertificate at command pipeline position 1
    Supply values for the following parameters:
    Thumbprint: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    Enable-ExchangeCertificate : An unexpected error occurred while the forms-based
    authentication settings for path /LM/W3SVC/1 were being modified. The error re
    turned was 5506.
    At line:1 char:27
    + Enable-ExchangeCertificate <<<< -Services "SMTP, IMAP, IIS, POP"
    + CategoryInfo : NotSpecified: ( [Enable-ExchangeCertificate],
    FormsAuthentica...UnknownSetError
    + FullyQualifiedErrorId : 25114584,Microsoft.Exchange.Management.SystemCon
    figurationTasks.EnableExchangeCertificate

    [PS] C:\Windows\system32>




    Why would this occur I'm trying to activate a new SSL Certificate?

  2. #2

    Join Date
    Mar 2011
    Location
    Bournemouth
    Posts
    280
    Thank Post
    16
    Thanked 74 Times in 64 Posts
    Rep Power
    21
    I assume this:

    "The certificate with thumbprint FC95F9670B0951D27A2CF686458754CBCFC015EC was found but is not valid for use with Exchange Server (reason: PrivateKeyMissing)."

    Plus a quick google search suggests that wildcard certificates are not fully supported on exchange and can cause problems with a few areas.

  3. #3
    wesleyw's Avatar
    Join Date
    Dec 2005
    Location
    Kingswinford
    Posts
    2,207
    Thank Post
    225
    Thanked 50 Times in 44 Posts
    Blog Entries
    1
    Rep Power
    30
    Fair enough but the old wildcard worked fine for this? I'll look at getting another Certificate for this for Exchange.

    Wes

SHARE:
+ Post New Thread

Similar Threads

  1. Exchange email monitoring
    By altecsole in forum How do you do....it?
    Replies: 22
    Last Post: 11th July 2008, 09:18 AM
  2. Exchange 2003 and Server 2003 SP1 issue.
    By tosca925 in forum Windows
    Replies: 0
    Last Post: 21st August 2005, 10:32 PM
  3. Exchange Server
    By woody in forum Windows
    Replies: 16
    Last Post: 21st August 2005, 05:52 PM
  4. Borked Exchange 2003 OWA
    By Ric_ in forum Windows
    Replies: 7
    Last Post: 21st July 2005, 08:34 AM
  5. Exchange Server 2003 licensing query
    By tarquel in forum Windows
    Replies: 5
    Last Post: 4th July 2005, 01:56 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •