Microsoft Exchange Server 2010/2013/2016/2019 – Unable to connect to OWA/ECP “protectionCertificates.Length<1"

what did Microsoft break this time?
Two things, and you’re likely here because either:

You can’t access OWA/ECP
You’re being bounced back to the main OWA page when trying to sign in and you’ve got a load balancer.


(Get-AuthConfig).CurrentCertificateThumbprint | Get-ExchangeCertificate | Format-List
New-ExchangeCertificate -KeySize 2048 -PrivateKeyExportable $true -SubjectName “cn=bdskmail Certificate” -FriendlyName “Microsoft Exchange Server Auth Certificate” -DomainName “”

Set-AuthConfig -NewCertificateThumbprint -NewCertificateEffectiveDate (Get-Date)
Set-AuthConfig -PublishCertificate
Set-AuthConfig -ClearPreviousCertificate
Restart-Service MSExchangeServiceHost
Restart-WebAppPool MSExchangeOWAAppPool
Restart-WebAppPool MSExchangeECPAppPool

If is not work Update your AD Schema

schema, open an administrative PowerShell, set yourself to the directory (cd command) of the Exchange Setup.exe. For example with Exchange Server 2013 the default is “C:\Program Files\Microsoft\Exchange Server\V15\Bin\”. Then run the following command.

Setup.exe /PrepareSchema /IAcceptExchangeServerLicenseTerms_DiagnosticDataON

setup.exe /PrepareAD /IAcceptExchangeServerLicenseTerms_DiagnosticDataON

Leave a Reply

Your email address will not be published. Required fields are marked *

Reload Image

This site uses Akismet to reduce spam. Learn how your comment data is processed.

WhatsApp Logo IT World