DaBoags
asked on
SBS 2008 Wrong Certificate with Outlook Anywhere
Hi all,
got an SBS2008 playing up. For a couple of weeks now, my remote users cannot connect to the SBS2008 using Outlook Anywhere.
The Exchange Account in Outlook is set as :
- Exchange Server : server.domain.local
- User Name : username
- Advanced - Connection Tab - Proxy settings
- URL : http://remote.domain.com
- Proxy : msstd:remote.domain.com
Open Outlook. Connection works.
Close Outlook - reopen Outlook : disconnected.
Check settings :
- Advanced - Connection Tab - Proxy settings
- URL : SERVER
- Proxy : msstd:SERVER
Now, why does it automatically change ? I went back to the SBS server, deleted the cert in the MMC console : \Local Computer\Personal\Certific ates "remote.domain.com" then went to the SBS console and re-did the steps "Setup your Internet Address" then "Add certificate". Checked in IIS for the bindings and the certificate is correctly seleted...
Still. Outlook will revert to SERVER instead of remote.domain.com
Any clues ?
got an SBS2008 playing up. For a couple of weeks now, my remote users cannot connect to the SBS2008 using Outlook Anywhere.
The Exchange Account in Outlook is set as :
- Exchange Server : server.domain.local
- User Name : username
- Advanced - Connection Tab - Proxy settings
- URL : http://remote.domain.com
- Proxy : msstd:remote.domain.com
Open Outlook. Connection works.
Close Outlook - reopen Outlook : disconnected.
Check settings :
- Advanced - Connection Tab - Proxy settings
- URL : SERVER
- Proxy : msstd:SERVER
Now, why does it automatically change ? I went back to the SBS server, deleted the cert in the MMC console : \Local Computer\Personal\Certific
Still. Outlook will revert to SERVER instead of remote.domain.com
Any clues ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Okay, still no luck. Have run the Outlook test config (ctrl+outlook icon thingy) and the output is as attached. Note the "Certificate Principal Name" points to the NetBIOS name of my server, not the ecert. How do I change that ?
Protocol: Exchange HTTP
Server: CANCSBS
Login Name: Cadmin
SSL: Yes
Mutual Authentication: Yes
Availability Service URL: https://remote.canc.nc/EWS/Exchange.asmx
OOF URL: https://remote.canc.nc/EWS/Exchange.asmx
OAB URL: https://remote.canc.nc/OAB/02820a85-dff6-4f60-9b61-f0dfe3b533c2/
Unified Message Service URL: https://remote.canc.nc/UnifiedMessaging/Service.asmx
Auth Package: Unspecified
Certificate Principal Name: msstd:CANCSBS
ASKER
Got it :)
First in Exchange Management Shell run the command :
Get-OutlookProvider.
Mine displayed no value for the CertPrincipalName so I used :
Set-OutlookProvider -CertPrincipalname msstd:remote.canc.nc
and it asked me which identity I wanted to change, so I entered : WEB, then again the same command EXCH then again EXPR.
Now, back to Get-OutlookProvider
Name Server CertPrincipalName TTL
---- ------ ----------------- ---
EXCH CANCSBS msstd:remote.canc.nc 1
EXPR CANCSBS msstd:remote.canc.nc 1
WEB CANCSBS msstd:remote.canc.nc 1
Back to Outlook test config and : voila :)
First in Exchange Management Shell run the command :
Get-OutlookProvider.
Mine displayed no value for the CertPrincipalName so I used :
Set-OutlookProvider -CertPrincipalname msstd:remote.canc.nc
and it asked me which identity I wanted to change, so I entered : WEB, then again the same command EXCH then again EXPR.
Now, back to Get-OutlookProvider
Name Server CertPrincipalName TTL
---- ------ ----------------- ---
EXCH CANCSBS msstd:remote.canc.nc 1
EXPR CANCSBS msstd:remote.canc.nc 1
WEB CANCSBS msstd:remote.canc.nc 1
Back to Outlook test config and : voila :)
ASKER
Thanks Cliff for pointing me to the right direction.
ASKER
Looking at the following output, what do I need to change ? (server OS is in French, hope u can make sense of it all).
Open in new window
Open in new window
Open in new window