Link to home
Create AccountLog in
Avatar of cisco_scrub
cisco_scrub

asked on

New Security Certificate for new OWA host record

After creating new (A) host records for OWA access to "mail.server.com/exchange", (formally using local or outside IP/exchange to access OWA).  Found current self assigned CA pointing  to "server.domain.local".  IIS security config verified, or so I thought.

The issue I'm having is getting mail to sync to iPhones through Exchange account after they properly authenticate without SSL on.  "Connection to server failed".  Even verified Sync ability with ActiveSync test tool. Hmmm

Also started getting OWA Red X issue on mail body when using "mail.server.com/exchange" both in and outside network.  Ran the usual workarounds, etc.  Issue remains, havent tried Hotfixes yet. OWA still works fine with "IP/exchange" both inside and outside.  

So my questions are;

Do I need to create a new self assigned CA for "mail.server.com/exchange" for iPhones and OWA even though ExchangeWeb is set to anonymous authentication?  

Can I edit or append the current Self Assigned CA?

What am I missing here?
Avatar of praveenkumare_sp
praveenkumare_sp
Flag of India image

Your certificate need depends whether you have set Require SSL on the Virtual Directory to YES or NO

if you have set to YES then you will need the certificate

let me know if you need more info on this
Avatar of cisco_scrub
cisco_scrub

ASKER

No SSL enabled in IIS.  Something is causing the iPhone and OWA issue with my new "mail.server.com" (A) Host Record.  OWA works when using IPs (both in and outside).  Can't use IP on iPhone, same issue, seems to authenticate fine, then when browsing to Inbox, "Connection to Server failed".

Two different issues maybe?
What version of Exchange?
Exchange Version: 6.5.7226.0 on SBS 2003
How about some links to similar issues?....
ASKER CERTIFIED SOLUTION
Avatar of cisco_scrub
cisco_scrub

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
Triple check all settings!!
-