22 C
Dubai
Sunday, December 22, 2024

Certificate is invalid and revocation check failure in Exchange Server

When you import a certificate from a certificate authority . It checks the revocation status of an SSL Certificate, the client connects to the URLs and downloads the CA’s CRLs. Then, the client searches through the CRL for the serial number of the certificate to make sure that it hasn’t been revoked.

but when exchange servers has internet. It will not have any issues. But when its behind the proxy. it may not have issues if your proxy is configured through .use automatic detect settings.

As it uses the system account  –  System account has its own proxy settings – Lets see how to access the systems account proxy settings.

image

image

Revocation Check failure

image

To check your CRL urls – Use internet explorer – Security lock – view certificates

Solution –

Download Sysinternals to check the system proxy settings

Get PsExec.exe into a folder. browse to command prompt.

image

PsExec.exe –i –d –s cmd

run whoami make sure you are in system account proxy settings

inetcpl.cpl to access system proxy settings

So that we can change the win http proxy settings of the system.

image

Entered my proxy settings. Click ok.

image

Reboot the server.

Certificate is valid now.

image

Satheshwaran Manoharan
Satheshwaran Manoharanhttps://www.azure365pro.com
Award-winning Technology Leader with a wealth of experience running large teams and diversified industry exposure in cloud computing. From shipping lines to rolling stocks.In-depth expertise in driving cloud adoption strategies and modernizing systems to cloud native. Specialized in Microsoft Cloud, DevOps, and Microsoft 365 Stack and conducted numerous successful projects worldwide. Also, Acting as a Technical Advisor for various start-ups.

Related Articles

2 COMMENTS

  1. WOW! Really nice article, there was indeed an old proxy entered in the inetcpl of the SYSTEM user. Thanks a bunch!

LEAVE A REPLY

Please enter your comment!
Please enter your name here

× How can I help you?