aholling
asked on
Exchange 2010 Certificate Problem
Hi,
We have just set up a new Exchange 2010 server. I have imported our SSL certificate in for mail.mycompany.com and we can use OWA without any certificate errors.
When we load Outlook on our lan though, as it loads we get a security error saying that the certificate is for the wrong domain name. Obviously when Outlook connects to Exchange it is connecting to the machine name (eg. exch.domain.local), problem is it is presenting the certificate for mail.mycompany.com thus the error.
How do I configure Exchange so that when Outlook connects it uses the self signed (or a cert signed by our enterprise CA) instead of the mail.mycompany.com cert?
If I configure IIS to use the exch.domain.local one, Outlook works fine but obviously OWA doesnt. If I configure IIS to use the mail.mycompany.com one then OWA works fine but Outlook doesn't.
We have just set up a new Exchange 2010 server. I have imported our SSL certificate in for mail.mycompany.com and we can use OWA without any certificate errors.
When we load Outlook on our lan though, as it loads we get a security error saying that the certificate is for the wrong domain name. Obviously when Outlook connects to Exchange it is connecting to the machine name (eg. exch.domain.local), problem is it is presenting the certificate for mail.mycompany.com thus the error.
How do I configure Exchange so that when Outlook connects it uses the self signed (or a cert signed by our enterprise CA) instead of the mail.mycompany.com cert?
If I configure IIS to use the exch.domain.local one, Outlook works fine but obviously OWA doesnt. If I configure IIS to use the mail.mycompany.com one then OWA works fine but Outlook doesn't.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!
I.e create a zone for your external domain name in your internal DNS and then create an A record for mail and point it to your internal Exchange Servers IP address.