Because I wanted to get rid of the security warning in Outlook Web App, I bought a certificate and installed it on our Exchange 2010 CAS server which is also a Hub Transport server.
It's obvious that the certificate was generated with the external fqdn of the CAS-server. Let's say mail.contoso.com.
So I ran in to a problem that users on our internal LAN got a security warning in Outlook 2007 because the name on the certificate wasn't right. Internal fqnd is let's say netbiosname.contoso.local.
On technet I found the following article http://support.microsoft.com/kb/940726/en-us
I followed the steps in the article and changed the hosts file on a PC tot test it.
I changed the host file so that the external fqdn mail.contoso.com would point to an internal ip.
I thought it would solve this problem but now Outlook had a new security warning from a certificate on our mailbox server???? How is that possible???
It really puzzles me because I would think that Outlook 2007 would connect through the CAS server and get a certificate from a Mailbox server.
Just to be clear. We have 1 mailboxserver and 1 CAS/HUB server.