rdvarghese
asked on
Outlook 2007 Certificate Security Warning.
We have Exchange 2007 Server and when setting up Outlook 2007 for users, i get a Certificate Security Alert saying -
"The name on the security certificate is invalid or does not match the name of the site "
if i were to buy the SSL certs from verisign, how many do i need? just one or two? because my understanding is that you only need one cert that contains one or more "subject alternative names" - right?
(or) the auto discover service requires a second certificate?
i want to be able to use Outlook Anywhere, OWA, AutoDiscover and for Cell Phones that can download emails from our exchange server. Would the SSL cert solve these issues?
"The name on the security certificate is invalid or does not match the name of the site "
if i were to buy the SSL certs from verisign, how many do i need? just one or two? because my understanding is that you only need one cert that contains one or more "subject alternative names" - right?
(or) the auto discover service requires a second certificate?
i want to be able to use Outlook Anywhere, OWA, AutoDiscover and for Cell Phones that can download emails from our exchange server. Would the SSL cert solve these issues?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
update the FQDN of the Exchange 2007 Client Receive connector to match that of your SSL cert. if you obtained a wildcard cert, then use <any host name>.<your SSL cert domain name>.com.
then, and here is the kicker, go to the email account config window for your outlook 2007 clients, and change the servername to match the FDQN you aplied, and hit Check Name. the server name will resolve back to whatever your original A/D server name is, so you will get the impression that nothing changed, but the fact is that if you do not change this setting in the Outlook profile, you would continue to get the server mismatch warning, even though it looks like Outlook is going to connect using your A/D name.