Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1151
  • Last Modified:

Autodiscover failing on Exchange 2010

Here's my situation and problem:
I have a Windows Server 2008 R2 box running Active Directory and DNS.  I have another Windows 2008 R2 server running IIS 6.0 and Exchange Server 2010.  Exchange installed just fine and I've been testing connectivity using https://testexchangeconnectivity.com.  Inbound and outbound mail pass, but when I test autodiscover connectivity, it fails.  Here is the complete results from that test:


       Connectivity Test Failed

 
Test Details

       Attempting to test Autodiscover for user@domain.com
       Testing Autodiscover failed.
              Test Steps
              ExRCA is attempting each method of contacting the Autodiscover service.
       The Autodiscover service couldn't be contacted successfully by any method.
              Test Steps
              Attempting to test potential AutoDiscover URL https://domain.com/AutoDiscover/AutoDiscover.xml
       Testing of this potential Autodiscover URL failed.
              Test Steps
              Attempting to resolve the host name domain.com in DNS.
       Host successfully resolved
              Additional Details
       IP(s) returned: **PUBLIC IP ADDRESS**

       Testing TCP Port 443 on host domain.com to ensure it is listening and open.
       The port was opened successfully.
       ExRCA is testing the SSL certificate to make sure it's valid.
       The SSL certificate failed one or more certificate validation checks.
              Test Steps
              The certificate name is being validated.
       Certificate name validation failed.
        

              Additional Details
       Host name domain.com does not match any name found on the server certificate CN=EXCHANGE





       Attempting to test potential AutoDiscover URL https://autodiscover.domain.com/AutoDiscover/AutoDiscover.xml
       Testing of this potential Autodiscover URL failed.
              Test Steps
              Attempting to resolve the host name autodiscover.domain.com in DNS.
       Host successfully resolved
              Additional Details
       IP(s) returned: **PUBLIC IP ADDRESS**

       Testing TCP Port 443 on host autodiscover.domain.com to ensure it is listening and open.
       The port was opened successfully.
       ExRCA is testing the SSL certificate to make sure it's valid.
       The SSL certificate failed one or more certificate validation checks.
              Test Steps
              The certificate name is being validated.
       Certificate name validation failed.

              Additional Details
       Host name autodiscover.domain.com does not match any name found on the server certificate CN=EXCHANGE





       ExRCA is attempting to contact the Autodiscover service using the HTTP redirect method.
       The attempt to contact Autodiscover using the HTTP Redirect method failed.
              Test Steps
              Attempting to resolve the host name autodiscover.domain.com in DNS.
       Host successfully resolved
              Additional Details
       IP(s) returned: **PUBLIC IP ADDRESS**

       Testing TCP Port 80 on host autodiscover.domain.com to ensure it is listening and open.
       The port was opened successfully.
       Checking Host autodiscover.domain.com for an HTTP redirect to AutoDiscover
       ExRCA failed to get an HTTP redirect response for Autodiscover.
              Additional Details
       An HTTP 403 forbidden response was received. The response appears to have come from Unknown. Body is: You do not have permission to view this directory or page.



       ExRCA is attempting to contact the Autodiscover service using the DNS SRV redirect method.
       Failed to contact AutoDiscover using the DNS SRV redirect method.
              Test Steps
              Attempting to locate SRV record _autodiscover._tcp.domain.com in DNS.
       The Autodiscover SRV record wasn't found in DNS.
        

Port 80 and Port 443 are both pointing to the Exchange server via a firewall.  I'm assuming it has to do with server permissions or something along those lines.  Any suggestions/answers would be really welcome.





0
AremP
Asked:
AremP
1 Solution
 
dhruvarajpCommented:
the certificate you used does not have the subject name
autodiscover.yourdomain.com included
please reffer to
http://technet.microsoft.com/en-us/library/bb332063(EXCHG.80).aspx 

the scenarios here apply 2010 as well


Thank you
Dhruv
0
 
AremPAuthor Commented:
Ok, I see that now.  How do i go about creating and installing the new certificate?  Do I do it in IIS or in Exchange Server?  I tried doing it in Exchange Server, and I created the Certificate request, but in order to complete the pending request, I have to select a certificate to map to the certificate request.  What is the path on the server to locate the certificate to change?
0
 
Shreedhar EtteCommented:
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
AremPAuthor Commented:
Shree,
That site has most of the answers I need, but I cannot find the location of the physical certificate.  I need to know the path to the exchange certificate before I can finish the new certificate request.
0
 
AremPAuthor Commented:
it was not quite what I was looking for
0

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now