Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Autodiscover certificate error

Posted on 2009-04-05
8
Medium Priority
?
1,219 Views
Last Modified: 2012-05-06
I recently upgraded exch2003 to 2007 and removed 2003 , but When I open outlook it is showing certificate error. autodiscover.domain.com.
I have created a A record  'autodiscover.domain.com' in DNS server. Even after that the same error is coming.

Furthermore, An error is showing up when they click send/recieve button
0x8004010f.an object could not be found.
I have changed the internal and external url to the common url. and
I have removed the OAB and recreated, but still showing the same error.

Your help is highly appreciated.
Thanks
Muhammed Asif
0
Comment
Question by:MAS
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 27

Author Comment

by:MAS
ID: 24074694
When I click send/recieve it will come up to 97% and end up with the same error
'Microsoft exchange reported error (0x8004010f). The operation failed, An object cannot be found'.

Awaiting your reply
Muhammed Asif

0
 
LVL 21

Assisted Solution

by:Hendrik Wiese
Hendrik Wiese earned 160 total points
ID: 24074757
The possible cause would be:

If the Outlook 2007 client resides on a different subnet than the Exchange 2007 server,
and the router that connects from the subnet listen to TCP Port 443 (HTTPS), the auto discover
mode of Outlook 2007 and Exchange 2007 may fail due DNS name resolution issue or/and unavailable
socket on the router that can support SSL connection.
This failure occur due a certificate mismatch that Outlook 2007 try to use to create a
secure channel between the client to the server.

Resolution:
If you are using Cisco (For example) network equipment, you can disable the listen to TCP Port 443 (HTTPS) by using the command:
"no ip http secure-server"
Its recommended to consulate the vendor documentation, before applying any new settings.
Also, use "NSLOOKUP" command, to verity correct DNS settings for the record:
autodiscover.yourdomainname.com
http://msexchangeteam.com/archive/2006/11/15/431502.aspx

Please let me know if this helped?
0
 
LVL 27

Author Comment

by:MAS
ID: 24094321
disable the listen to port 443. This I have to do it in cisco switch or firewall (PIX).
Because we are using cisco PIX and cisco switch.

Thanks
Muhammed Asif
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 21

Assisted Solution

by:Hendrik Wiese
Hendrik Wiese earned 160 total points
ID: 24094568
Do it on both the Switch and Firewall.
0
 
LVL 27

Author Comment

by:MAS
ID: 24136624
Sorry for the late response
'no ip http secure-server'
This command is not working on both switch and pix.

Thanks
Muhammed Asif


0
 
LVL 21

Expert Comment

by:Hendrik Wiese
ID: 24155387
Please let me know what models you are using so I can send you the correct command?
0
 
LVL 27

Author Comment

by:MAS
ID: 24177963
Catalyst 3590, and PIX 506E
0
 
LVL 27

Accepted Solution

by:
MAS earned 0 total points
ID: 24302071
?
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

661 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question