Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Exchange 2007 SP3 Outlook Anywhere problems and wildcard certificate

Posted on 2011-03-09
Medium Priority
Last Modified: 2012-05-11
my config is 2 CAS servers loadbalanced under pointing to hardware loadbalancer IP address. Also points to the same ip address. SSL certificate used for Exchange is issued for * and have SAN *,
Doing Test-OutlookWebServices I receive:
Id      : 1003
Type    : Information
Message : About to test AutoDiscover with the e-mail address

Id      : 1007
Type    : Information
Message : Testing server with the published name &

Id      : 1019
Type    : Information
Message : Found a valid AutoDiscover service connection point. The AutoDiscover URL on this object is

Id      : 1006
Type    : Information
Message : The Autodiscover service was contacted at

Id      : 1016
Type    : Success
Message : [EXCH]-Successfully contacted the AS service at The elapsed time was 171 milliseconds.

Id      : 1015
Type    : Success
Message : [EXCH]-Successfully contacted the OAB service at The elapsed time was 0 milliseconds.

Id      : 1014
Type    : Success
Message : [EXCH]-Successfully contacted the UM service at The elapsed time was 15 milliseconds.

Id      : 1016
Type    : Success
Message : [EXPR]-Successfully contacted the AS service at The elapsed time was 109 milliseconds.

Id      : 1015
Type    : Success
Message : [EXPR]-Successfully contacted the OAB service at The elapsed time was 0 milliseconds.

Id      : 1014
Type    : Information
Message : [EXPR]-The UM is not configured for this user.

Id      : 1017
Type    : Success
Message : [EXPR]-Successfully contacted the RPC/HTTP service at The elapsed time was 187 milliseconds.

Id      : 1006
Type    : Success
Message : The Autodiscover service was tested successfully.

For domain-joined clients everything works perfectly but when I try to configure Outlook 2010 on machine outside the domain with dns configured to resolve and autodiscover properly configure Outlook to use Rpc over HTTP, profile is created but after this I receive instant prompt for login and cannot open mailbox. Is this a problem with my wildcard certificate or should I try toggling authorization setting on IIS.
To answer question why internal and external url is the same - I publish exchange only in WAN (no access from internet, so also is not usable for me) and unfortunately out AD domain is the same as smtp domain so for easier config I made just one url - maybe this is wrong.
Question by:Matt72127
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2

Accepted Solution

praveenkumare_sp earned 1000 total points
ID: 35088249
i think i know whats  the issue

please see think link

When, if and how do you modify Outlook Providers?

go to the place where the article talks about the below command
Set-OutlookProvider EXPR -CertPrincipalName msstd:*

Expert Comment

ID: 35088305
the reason this happens is
the certificate issued to name is *
but ur outlook anywhere url will be

there is a mismatch in the URLS thats the reason why this is happening


Author Closing Comment

ID: 35126815
Thanks a lot, this is really helpfull

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Are you an Exchange administrator employed with an organization? And, have you encountered a corrupt Exchange database due to which you are not able to open its EDB file. This article will explain all the steps to repair corrupt Exchange database.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question