Improve company productivity with a Business Account.Sign Up

x
?
Solved

Hosted Exchange SSL issues

Posted on 2011-02-21
9
Medium Priority
?
633 Views
Last Modified: 2012-06-27
I'm using Microsoft's BPOS for hosted Exchange and have many users that just use the OWA interface.  Rather than go to red001.mail.microsoftonline.com, I setup a CNAME, mail.domainname.com to point to that address.

My problem is that when the user uses the mail.domainname.com, they get a certificate error.  If the user goes to red001.mail.microsoftonline.com, then no certificate error.  I called Microsoft a few times and they said they couldn't help me.

I would like to continue using the mail.domainname.com as it is much easier for the users to remember.  Any ideas?
0
Comment
Question by:SupermanTB
  • 4
  • 3
  • 2
9 Comments
 
LVL 35

Expert Comment

by:Paul MacDonald
ID: 34945630
Since the SSL certificate is issued to the domain, you would need a certificate that validated against  mail.domainname.com as well as mail.microsoftonline.com.
0
 

Author Comment

by:SupermanTB
ID: 34945646
That's what I figured.  Given the hosted exchange, I'm not sure where I would install the SSL certificate
0
 
LVL 35

Accepted Solution

by:
Paul MacDonald earned 1000 total points
ID: 34945654
It would have to be on the machine hosting Exchange.  The folks at MicrosoftOnline should be able to help you out.
0
Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

 

Author Comment

by:SupermanTB
ID: 34945663
Is that typically the way this is handled with hosted Exchange?  When I mentioned that to the Microsoft techs, they had no clue what I was talking about.
0
 
LVL 35

Expert Comment

by:Paul MacDonald
ID: 34945697
I don't see any other way, though it may be the expect to host the domain name for you.  That may cost extra so they may be steering you in that direction.  Since they're the host, they get to make the rules.  

You could try bringing the issue up with your salesperson.  That person may have the answers already.
0
 
LVL 1

Expert Comment

by:shabbirj
ID: 34945700

The solutions is that you can buy a SSL cert, then go to IIS on the server where the OWA role is installed and import it in
after that you can create a basic web page with your domain name and hyperlink it to the red001.mail.microsoftonline.com
I have done this and it works fine
0
 

Author Comment

by:SupermanTB
ID: 34945859
Forgive me if I'm misunderstanding you, but since this is hosted Exchange, I have no access to the server where the OWA role is installed.  Not sure how I would be able to do that.
0
 
LVL 1

Assisted Solution

by:shabbirj
shabbirj earned 1000 total points
ID: 34945926
The Simple solution is to create a single web page with your Domain info and a log in
button in the log in button on the HTML page embed the link

https://red001.mail.microsoftonline.com/owa/auth/logon.aspx?url=https://red001.mail.microsoftonline.com/owa/&reason=0

The user will browse to your domain page  eg. mail.yourdomain.com
then wen they click on the button they will be redirected to the above link
0
 

Author Comment

by:SupermanTB
ID: 34946078
Ahhh, very clever.  That will work.  Thanks.
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Disk errors can be the source of sundry problems for the Exchange server, the most common one being that the database fails to mount.
You can use the network upload option and the Office 365 Import service to bulk-import PST files to user mailboxes. Network upload means that you upload the PST files a temporary storage area in the Microsoft cloud.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

606 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question