Solved

Exchange 2010 MAPI security alert

Posted on 2011-02-22
3
669 Views
Last Modified: 2012-06-21
Hi Experts,
I've recently installed and configured an Exchange 2010 server.  I've puchased a UCC certificate for autodiscover.outsidedomain.com and inbox.outsidedomain.com.   The internal server name is inbox.internal.local.  When employees first open outlook, they receive:

 "Security Alert: The Name of the Security Certificate Is Invalid or Does Not Match the Name of the Site"

I've created DNS records for inbox.outsidedomain.com on our internal DNS server to point to inbox.internal.local.  

I've also followed this guide with no success:  http://support.microsoft.com/kb/940726

Please help!

Thank you!
0
Comment
Question by:speeder503
  • 2
3 Comments
 
LVL 11

Expert Comment

by:MichaelVH
ID: 34955729
Hi there,

first of all, I suppose that clients are trying to access the site using "inbox.outsidedomain.com" as external url?

The SN of the certificate should indeed be "inbox.outsidedomain.com" (if that's your external url)
and as SAN's you should have the server's internal name, autodiscover.outsidedomain.com, and any other name on which the server should be available.

Hope this helps!

Greets,

Michael
0
 

Author Comment

by:speeder503
ID: 34955924
Hi Michael,

The clients are indeed connecting to inbox.outsidedomain.com however the server is being resolved back to inbox.internal.local.

Would not adding inbox.internal.local to the unified communication certificate cause this error?

Basically, should I modify the cert to reflect:

inbox.outsidedomain.com
autodiscover.outsidedomain.com
inbox.internal.local

Thanks again.
0
 
LVL 11

Accepted Solution

by:
MichaelVH earned 500 total points
ID: 34956260
indeed, that's it :)
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
how to add IIS SMTP to handle application/Scanner relays into office 365.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now