Certificate Assistant

Exchange Server 2019

Letzter Beitrag von KermitElmo Vor 10 Monaten

3 Beiträge

2 Benutzer

0 Reactions

399 Ansichten

RSS

KermitElmo

(@kermitelmo)

Active Member

Beigetreten: Vor 11 Monaten

Beiträge: 7

Themenstarter 16. Januar 2024 10:18

Hallo zusammen,
ich habe letztes Jahr in der Kundschaft nach dem WhitePaper "Certificate Assistant: Neue Version" die Exchange Server 2019 die Zertifikate umgestellt. Vielen Dank Frank.
Im Dezember letzten Jahres durch eine fehlerhafte DNS-Weiterleitung der autodiscover.xxxxxx.com und outlook.xxxxxxx.com Domaine ist die Zertifikaterneuerung fehlgeschlagen und das Zertifikat abgelaufen.
Ich habe dann letzte Woche die Einstellungen von CertificateAssistant_v3_EX2019.ps1 überprüft und das Skripte dann als Admin auf dem Exchange laufen lassen.
Das Log:
TimeStamp;ScriptSection;Type;Message;ErrorDetails
09.01.2024 14:22:38;System;Info;Geting system parameters;
09.01.2024 14:22:38;System;Info;Certificate Assistant Exchange 2019 Version;
09.01.2024 14:22:38;System;Info;PowerShell Version: 5.1.17763.5202 OSVersion: 10.0.17763.0;
09.01.2024 14:22:38;Check Posh-ACME;Info;Check if Module installed;
09.01.2024 14:22:38;Load Posh-ACME;Info;Posh-ACME is installed, try to load it;
09.01.2024 14:22:39;Load Posh-ACME;Info;Module Import was successfull, PoshACMEVersion 4.20.0;
09.01.2024 14:22:39;Load Exchange SnapIns;Info;Try to load Exchange SnapIns;
09.01.2024 14:22:41;Load Exchange SnapIns;Info;Sucessfully loaded Exchange SnapIns;
09.01.2024 14:22:41;IIS;Info;Trying to create .Well-Known Directory;
09.01.2024 14:22:41;IIS;Info;Well-Known Folder already exists, skipping;
09.01.2024 14:22:41;IIS;Warning;Mime Type was not added to Well-Known folder, maybe it was already added;
09.01.2024 14:22:41;IIS;Info;Changing Let's Encrypt IIS directory to http;
09.01.2024 14:22:41;IIS;Info;Successfully changed Let's Encrypt IIS directory to http;
09.01.2024 14:22:41;IIS;Info;Checking Let's Encrypt IIS directory to accept validation by http request;
09.01.2024 14:22:41;IIS;Info;.well-known directory accepts http;
09.01.2024 14:22:41;Exchange FQDNs;Info;Getting Exchange FQDNs;
09.01.2024 14:22:41;Exchange FQDNs;Info;Getting local Exchange Server Name;
09.01.2024 14:22:45;Exchange FQDNs;Info;Local Exchange Name AMEX01;
09.01.2024 14:22:45;Exchange FQDNs;Info;Getting Autodiscover Hostname;
09.01.2024 14:22:45;Exchange FQDNs;Info;Autodiscover Hostname autodiscover.xxxxxx.com;
09.01.2024 14:22:45;Exchange FQDNs;Info;Getting Exchange Outlook Anywhere External FQDN;
09.01.2024 14:22:46;Exchange FQDNs;Info;Exchange Outlook Anywhere External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:46;Exchange FQDNs;Info;Getting Exchange Outlook Anywhere Internal FQDN;
09.01.2024 14:22:47;Exchange FQDNs;Info;Exchange Outlook Anywhere Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:47;Exchange FQDNs;Info;Getting Exchange OAB External FQDN;
09.01.2024 14:22:48;Exchange FQDNs;Info;Exchange OAB External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:48;Exchange FQDNs;Info;Getting Exchange OAB Internal FQDN;
09.01.2024 14:22:49;Exchange FQDNs;Info;Exchange OAB Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:49;Exchange FQDNs;Info;Getting Exchange EAS Internal FQDN;
09.01.2024 14:22:50;Exchange FQDNs;Info;Exchange EAS Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:50;Exchange FQDNs;Info;Getting Exchange EAS External FQDN;
09.01.2024 14:22:51;Exchange FQDNs;Info;Exchange EAS External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:51;Exchange FQDNs;Info;Getting Exchange EWS Internal FQDN;
09.01.2024 14:22:52;Exchange FQDNs;Info;Exchange EWS Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:52;Exchange FQDNs;Info;Getting Exchange EWS External FQDN;
09.01.2024 14:22:53;Exchange FQDNs;Info;Exchange EWS External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:53;Exchange FQDNs;Info;Getting Exchange ECP Internal FQDN;
09.01.2024 14:22:54;Exchange FQDNs;Info;Exchange EWS Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:54;Exchange FQDNs;Info;Getting Exchange ECP External FQDN;
09.01.2024 14:22:55;Exchange FQDNs;Info;Exchange ECP External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:55;Exchange FQDNs;Info;Getting Exchange OWA Internal FQDN;
09.01.2024 14:22:56;Exchange FQDNs;Info;Exchange OWA Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:56;Exchange FQDNs;Info;Getting Exchange OWA External FQDN;
09.01.2024 14:22:58;Exchange FQDNs;Info;Exchange OWA ExternalFQDN outlook.xxxxxx.com;
09.01.2024 14:22:58;Exchange FQDNs;Info;Getting Exchange MAPI Internal FQDN;
09.01.2024 14:22:58;Exchange FQDNs;Info;Exchange MAPI Internal FQDN outlook.xxxxxx.com;
09.01.2024 14:22:58;Exchange FQDNs;Info;Getting Exchange MAPI External FQDN;
09.01.2024 14:22:59;Exchange FQDNs;Info;Exchange MAPI External FQDN outlook.xxxxxx.com;
09.01.2024 14:22:59;Exchange FQDNs;Info;Make them unique;
09.01.2024 14:22:59;Exchange FQDNs;Info;FQDNs are unique;
09.01.2024 14:22:59;LE System;Info;Setting LE Mode;
09.01.2024 14:23:02;LE System;Info;Setting LE Mode to PRODUCTION MODE (LIVE SYSTEM);
09.01.2024 14:23:02;LE System;Info;Checking for existing LE Account;
09.01.2024 14:23:02;LE System;Info;Found a existing LE Account;
09.01.2024 14:23:02;LE Certificate;Info;Trying to create a new order for a certificate;
09.01.2024 14:23:05;LE Certificate;Info;Successfully ordered certificate;
09.01.2024 14:23:05;LE System;Info;Creating Autorisation files for LE verification;
09.01.2024 14:23:07;LE System;Info;Asking LE to verify the order;
09.01.2024 14:23:11;LE System;Info;Successfully informed LE to verify the order;
09.01.2024 14:23:11;LE System;INFO;Let's give LE some time to validate (1 min);1 min
09.01.2024 14:24:11;LE System;INFO;Time to wake up, need coffee!;
09.01.2024 14:24:11;LE System;INFO;Let's check the authorization;
09.01.2024 14:24:12;LE System;INFO;Authorization for autodiscover.xxxxxx.com is valid;
09.01.2024 14:24:12;LE System;INFO;Authorization for outlook.xxxxxx.com is valid;
09.01.2024 14:24:12;LE System;INFO;Let's refresh the order;
09.01.2024 14:24:13;LE System;INFO;Let's check if order is ready;
09.01.2024 14:24:13;LE System;ERROR;Order is NOT ready;

Dann dachte ich mir es läge an den zu vielen falschen Anmeldungen und der Account ist bei Let´s gesperrt, also habe ich das Skript eben noch mal laufen lassen und der gleiche Fehler.
Log:
TimeStamp;ScriptSection;Type;Message;ErrorDetails
16.01.2024 10:00:50;System;Info;Geting system parameters;
16.01.2024 10:00:50;System;Info;Certificate Assistant Exchange 2019 Version;
16.01.2024 10:00:50;System;Info;PowerShell Version: 5.1.17763.5202 OSVersion: 10.0.17763.0;
16.01.2024 10:00:50;Check Posh-ACME;Info;Check if Module installed;
16.01.2024 10:00:50;Load Posh-ACME;Info;Posh-ACME is installed, try to load it;
16.01.2024 10:00:52;Load Posh-ACME;Info;Module Import was successfull, PoshACMEVersion 4.20.0;
16.01.2024 10:00:52;Load Exchange SnapIns;Info;Try to load Exchange SnapIns;
16.01.2024 10:00:54;Load Exchange SnapIns;Info;Sucessfully loaded Exchange SnapIns;
16.01.2024 10:00:54;IIS;Info;Trying to create .Well-Known Directory;
16.01.2024 10:00:54;IIS;Info;Well-Known Folder already exists, skipping;
16.01.2024 10:00:54;IIS;Warning;Mime Type was not added to Well-Known folder, maybe it was already added;
16.01.2024 10:00:54;IIS;Info;Changing Let's Encrypt IIS directory to http;
16.01.2024 10:00:54;IIS;Info;Successfully changed Let's Encrypt IIS directory to http;
16.01.2024 10:00:54;IIS;Info;Checking Let's Encrypt IIS directory to accept validation by http request;
16.01.2024 10:00:54;IIS;Info;.well-known directory accepts http;
16.01.2024 10:00:54;Exchange FQDNs;Info;Getting Exchange FQDNs;
16.01.2024 10:00:54;Exchange FQDNs;Info;Getting local Exchange Server Name;
16.01.2024 10:00:58;Exchange FQDNs;Info;Local Exchange Name AMEX01;
16.01.2024 10:00:58;Exchange FQDNs;Info;Getting Autodiscover Hostname;
16.01.2024 10:00:58;Exchange FQDNs;Info;Autodiscover Hostname autodiscover.xxxxxx.com;
16.01.2024 10:00:58;Exchange FQDNs;Info;Getting Exchange Outlook Anywhere External FQDN;
16.01.2024 10:00:59;Exchange FQDNs;Info;Exchange Outlook Anywhere External FQDN outlook.xxxxxx.com;
16.01.2024 10:00:59;Exchange FQDNs;Info;Getting Exchange Outlook Anywhere Internal FQDN;
16.01.2024 10:01:00;Exchange FQDNs;Info;Exchange Outlook Anywhere Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:00;Exchange FQDNs;Info;Getting Exchange OAB External FQDN;
16.01.2024 10:01:01;Exchange FQDNs;Info;Exchange OAB External FQDN outlook.xxxxxx.com;
16.01.2024 10:01:01;Exchange FQDNs;Info;Getting Exchange OAB Internal FQDN;
16.01.2024 10:01:01;Exchange FQDNs;Info;Exchange OAB Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:01;Exchange FQDNs;Info;Getting Exchange EAS Internal FQDN;
16.01.2024 10:01:03;Exchange FQDNs;Info;Exchange EAS Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:03;Exchange FQDNs;Info;Getting Exchange EAS External FQDN;
16.01.2024 10:01:04;Exchange FQDNs;Info;Exchange EAS External FQDN outlook.xxxxxx.com;
16.01.2024 10:01:04;Exchange FQDNs;Info;Getting Exchange EWS Internal FQDN;
16.01.2024 10:01:05;Exchange FQDNs;Info;Exchange EWS Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:05;Exchange FQDNs;Info;Getting Exchange EWS External FQDN;
16.01.2024 10:01:06;Exchange FQDNs;Info;Exchange EWS External FQDN outlook.xxxxxx.com;
16.01.2024 10:01:06;Exchange FQDNs;Info;Getting Exchange ECP Internal FQDN;
16.01.2024 10:01:07;Exchange FQDNs;Info;Exchange EWS Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:07;Exchange FQDNs;Info;Getting Exchange ECP External FQDN;
16.01.2024 10:01:08;Exchange FQDNs;Info;Exchange ECP External FQDN outlook.xxxxxx.com;
16.01.2024 10:01:08;Exchange FQDNs;Info;Getting Exchange OWA Internal FQDN;
16.01.2024 10:01:09;Exchange FQDNs;Info;Exchange OWA Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:09;Exchange FQDNs;Info;Getting Exchange OWA External FQDN;
16.01.2024 10:01:10;Exchange FQDNs;Info;Exchange OWA ExternalFQDN outlook.xxxxxx.com;
16.01.2024 10:01:10;Exchange FQDNs;Info;Getting Exchange MAPI Internal FQDN;
16.01.2024 10:01:11;Exchange FQDNs;Info;Exchange MAPI Internal FQDN outlook.xxxxxx.com;
16.01.2024 10:01:11;Exchange FQDNs;Info;Getting Exchange MAPI External FQDN;
16.01.2024 10:01:12;Exchange FQDNs;Info;Exchange MAPI External FQDN outlook.xxxxxx.com;
16.01.2024 10:01:12;Exchange FQDNs;Info;Make them unique;
16.01.2024 10:01:12;Exchange FQDNs;Info;FQDNs are unique;
16.01.2024 10:01:12;LE System;Info;Setting LE Mode;
16.01.2024 10:01:13;LE System;Info;Setting LE Mode to PRODUCTION MODE (LIVE SYSTEM);
16.01.2024 10:01:13;LE System;Info;Checking for existing LE Account;
16.01.2024 10:01:13;LE System;Info;Found a existing LE Account;
16.01.2024 10:01:13;LE Certificate;Info;Trying to create a new order for a certificate;
16.01.2024 10:01:14;LE Certificate;Info;Successfully ordered certificate;
16.01.2024 10:01:14;LE System;Info;Creating Autorisation files for LE verification;
16.01.2024 10:01:14;LE System;Info;Asking LE to verify the order;
16.01.2024 10:01:15;LE System;Info;Successfully informed LE to verify the order;
16.01.2024 10:01:15;LE System;INFO;Let's give LE some time to validate (1 min);1 min
16.01.2024 10:02:15;LE System;INFO;Time to wake up, need coffee!;
16.01.2024 10:02:15;LE System;INFO;Let's check the authorization;
16.01.2024 10:02:15;LE System;INFO;Authorization for autodiscover.xxxxxx.com is valid;
16.01.2024 10:02:15;LE System;INFO;Authorization for outlook.xxxxxx.com is valid;
16.01.2024 10:02:15;LE System;INFO;Let's refresh the order;
16.01.2024 10:02:15;LE System;INFO;Let's check if order is ready;
16.01.2024 10:02:15;LE System;ERROR;Order is NOT ready;

Bestimmt hat jemand schon mal so einen Fall gehabt und kannst du mir bitte einen Tipp geben.
Vielen Dank
Andreas

Zitat

Jenny

(@jenny)

Trusted Member

Beigetreten: Vor 4 Jahren

Beiträge: 64

19. Januar 2024 16:05

Gleicher Fehler wurde schon mal besprochen, Lösung s. https://www.frankysweb.de/community/exchangezertifikate/le-system-error-order-is-not-ready/

AntwortZitat

KermitElmo

(@kermitelmo)

Active Member

Beigetreten: Vor 11 Monaten

Beiträge: 7

Themenstarter 30. Januar 2024 10:59

@jenny Vielen Dank für die Info, ich habe bei der Suche den Betrag nicht (direkt) gefunden.

AntwortZitat

Forum Icons: Das Forum enthält keine ungelesenen Beiträge Das Forum enthält ungelesene Beiträge

Themen-Icons: Unbeantwortet Beantwortet Aktiv Heiß Oben angepinnt Nicht genehmigt Gelöst Privat Geschlossen