Solved

Exchange 2010 MAPI security alert

Posted on 2011-02-22
3
672 Views
Last Modified: 2012-06-21
Hi Experts,
I've recently installed and configured an Exchange 2010 server.  I've puchased a UCC certificate for autodiscover.outsidedomain.com and inbox.outsidedomain.com.   The internal server name is inbox.internal.local.  When employees first open outlook, they receive:

 "Security Alert: The Name of the Security Certificate Is Invalid or Does Not Match the Name of the Site"

I've created DNS records for inbox.outsidedomain.com on our internal DNS server to point to inbox.internal.local.  

I've also followed this guide with no success:  http://support.microsoft.com/kb/940726

Please help!

Thank you!
0
Comment
Question by:speeder503
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 11

Expert Comment

by:MichaelVH
ID: 34955729
Hi there,

first of all, I suppose that clients are trying to access the site using "inbox.outsidedomain.com" as external url?

The SN of the certificate should indeed be "inbox.outsidedomain.com" (if that's your external url)
and as SAN's you should have the server's internal name, autodiscover.outsidedomain.com, and any other name on which the server should be available.

Hope this helps!

Greets,

Michael
0
 

Author Comment

by:speeder503
ID: 34955924
Hi Michael,

The clients are indeed connecting to inbox.outsidedomain.com however the server is being resolved back to inbox.internal.local.

Would not adding inbox.internal.local to the unified communication certificate cause this error?

Basically, should I modify the cert to reflect:

inbox.outsidedomain.com
autodiscover.outsidedomain.com
inbox.internal.local

Thanks again.
0
 
LVL 11

Accepted Solution

by:
MichaelVH earned 500 total points
ID: 34956260
indeed, that's it :)
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question