I have an SBS 2008 server migrated from SBS 2003. I have a GoDaddy class2 cert installed as "mail.mydomain.com" Everything works correctly with Outlook internally, RPC/HTTPS and POP3. The problem is IMAP does not bind to the correct cert. When I try to connect to the Exchange 2007 server via IMAP I receive "the server you are connected to is using a security certificate that could not be verified." The certificate is showing as the SBS self signed cert setup during the migration. The self signed cert and the GoDaddy cert have exactly the same FQDN. I have run the command <enable-exchangecertificate -thumbprint "thumbprint_of_GoDaddy_cert" -services IMAP,POP> from EMS and still the cert is incorrectly bound to the SBS self signed cert for IMAP. POP works just fine. I have tried changing the cert to the self signed cert stopping and starting IMAP svc and changing back to the GoDaddy cert stopping and starting IMAP etc.. What am missing?

Hi, I suggest you use command Get-POPSettings and Get-IMAPSettings and then have a compare to see if you could find some clues. In the process for POP3 and IMAP4, Exchange must select a FQDN and find a certificate based on a matching value in the CertificateDomains field. The FQDN is chosen on the basis of the X509CertificateName attribute in the POP3 or IMAP4 service settings. You can view the X509CertificateName attribute by running the Get-POPSettings cmdlet or the Get-IMAPSettings cmdlet. For more information, see Get-POPSettings and Get-IMAPSettings. The selection process for POP3 and IMAP4 in Exchange 2007 SP1 is the same as the process for SMTP STARTTLS. If the issue persists, could you please paste the result of Get-IMAPSettings and get-exchangecertificate <cert thumbprint> |fl , then paste the result here? Thanks, Elvis