We processed and received back a Security Certificate for our Exchange Server.
Since installing per instructions the exchange server still links to the original self-signed certificate - which it shouldn't!
From outside we use webmail.domain.com to access the server (via OWA)
Internally we use servername.netbiosdomainname.local
This is the layout of the issued certificate
Primary domain name = domain.com
1 - servername.netbiosdomainname.local
2 - domain.com
3 - webmail.domain.com
Should we have: 4 - servername (by itself)?
By running the below in powershell:
C:\>Get-ExchangeCertificate -DomainName servername.netbiosdomainname.local
It comes up with
print Services Subject
----- -------- -------
C630********328E5342FF66D98A621BC0E ..U.. CN=domainname.com
05E********BABE77335455321F7FF1498 IPUWS CN=servername
4A821D31FE********73A8759E44B972BDA IPU.S CN=servername