Solved

Exchange server 2007 / windows server 2003- domain authentication question

Posted on 2007-11-29
5
273 Views
Last Modified: 2010-03-06
Hi,
I have a domain that is called "mycompany.local" in Active Directory.
When installing Exchange server 2007 I ran into a problem trying to get Outlook Anywhere to work. I can't get it to work if the Exchange server is not accessed with the ".local" domain name, autentication don't work if I define an external hostname with ".com" domain.
I can edit all the hosts files and enter the ".local" domain name there but we use NAT and the hostname is different when the users is inside or outside the firewall.

How can I make this work?
Does the AD domain need to be the same as external domain to make Outlook Anywhere work or is there a way around this?
Is it a way to make Outlook Anywhere work without renaming/reinstalling the domain?
0
Comment
Question by:rj2
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 15

Expert Comment

by:JimboEfx
ID: 20375131
What certificate is your CAS server using? Outlook anywhere requires a trusted cert with a SAN attribute if i recall correctly for it to work internally and externally.

http://exchangepedia.com/blog/2007/08/outlook-anywhere-and-exchanges-self.html

http://www.msexchange.org/articles_tutorials/exchange-server-2007/mobility-client-access/securing-exchange-2007-client-access-server-3rd-party-san-certificate.html
0
 
LVL 10

Author Comment

by:rj2
ID: 20380418
It uses certificate for mycompany.com
0
 
LVL 10

Author Comment

by:rj2
ID: 20380449
What I would like ideally is to keep my internal AD domain mycompany.local, use external domain mycompany.com and just make Outlook Anywhere work. But so far I have only been able to connect using Outlook Anywhere from outside the firewall using hostname "mail.mycompany.local" and setting the IP in the hosts file. Even though the SSL certificate is for "mail.mycompany.com"
0
 
LVL 15

Accepted Solution

by:
JimboEfx earned 250 total points
ID: 20380545
First of all check this forum post:
http://forums.msexchange.org/m_1800438631/mpage_1/key_/tm.htm#1800455745

If that doesn't work I suppose you may find some use in the articles below.

Configuring Outlook Anywhere to Use an SSL Certificate with Redirection
http://technet.microsoft.com/en-us/library/bb310764.aspx

How to Configure an External Host Name for Outlook Anywhere (though i think you have already done this)
http://technet.microsoft.com/en-us/library/aa996902.aspx

How to Configure SSL Certificates to Use Multiple Client Access Server Host Names
http://technet.microsoft.com/en-us/library/aa995942.aspx
0
 
LVL 10

Author Comment

by:rj2
ID: 20394290
It is working now. The link http://forums.msexchange.org/m_1800438631/mpage_1/key_/tm.htm#1800455745 was right on. Thanks.
0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Suggested Courses

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question