I have Lync server 2010 environment, have Lync FEPool which contain 2 Front End servers (FE01 and FE02), one multi role server with archiving/monitory (ArcMonit01) roles and one Edge server (EDGEServ01).
Recently have to renew internal SSL certificates on FE servers.
After renewal of internal SSL the Lync Server Front-End service on first FE server (FE01) was able to start successfully but was unable to start on second server FE02.
while trying to start it manually got this error in event viewer/system logs (Event ID: 7024).
The Lync Server Front-End service terminated with service-specific
error %%-1008124830.)
After comparing the settings of both FE servers and also the new SSL certificate properties i came to know that the name of FE02 was not added as SAN in the SSL Certificate.
So i recreate the new CSR, Add the name of FE02 as SAN (FE02.mydomain.com) and got new SSL certificate against this new CSR from internal CA and then import on the server from which CSR was generated, assign on that server and export from that server that SSL and import on the FE02 and assign accordingly and after that "Lync Server Front-End Service" was started successfully FE02.
So my issue was due to the second server name (FE02.mydomain.com) was not added as the SAN in the internal SSL certificate.
No comments:
Post a Comment