Solved

Exchange 2010 - Need help with certificate

Posted on 2011-09-02
9
232 Views
Last Modified: 2012-05-12
We own domaina.com. Problem is that when this domain was set up way back in the NT4 days, someone used domainb.com as the domain name internally....and we never owned it.

So now that I have moved from Exchange 2003 to 2010, Outlook clients get the "The name on the security certificate is invalid or does not match the name of the site." We do have a proper certificate for OWA and is working fine when coming from the outside.

I changed the URLs under EMC\Server Configuration\Client Access on all the URLs listed there.

Where can I change the name that the Outlook clients are looking? If I can get it to mail.domaina.com I would be happy!
0
Comment
Question by:mvalpreda
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
  • +1
9 Comments
 
LVL 7

Expert Comment

by:JohnGrunwell
ID: 36475759
Did you have a Unified Communtications Cert?
autodiscover.domain.com etc...
0
 
LVL 2

Author Comment

by:mvalpreda
ID: 36475808
Yes....but I cannot get a cert for the original domain. Outlook clients get certificate error when connecting to mail.123.com. We don't own 123.com so I am trying to change the directory in AD/Exchange that is passed to Outlook so the certificate matches to mail.456.com....which we own.
0
 
LVL 7

Expert Comment

by:JohnGrunwell
ID: 36475864
I had to do the same thing for mine.  Look Here
http://www.shudnow.net/2007/08/10/outlook-2007-certificate-error/
Did you change umvirtualdirectory, activesync virtual directory, webservices, clientaccess  in powershell to the external site?
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 49

Accepted Solution

by:
Akhater earned 500 total points
ID: 36475887
get-clientaccessserver | fl *uri*

chances are the AutoDiscoverServiceInternalUri is still pointing to 123.com change it using the set-clientaccessserver -AutoDiscoverServiceInternalUri

also check the Get-WebServicesVirtualDirectory | fl *url* if this is unchanged you can use set-WebServicesVirtualDirectory to make the change
0
 
LVL 2

Author Comment

by:mvalpreda
ID: 36475990
[PS] C:\Windows\system32>get-clientaccessserver | fl *uri*

AutoDiscoverServiceInternalUri : <correct>

[PS] C:\Windows\system32>Get-WebServicesVirtualDirectory | fl *url*

InternalNLBBypassUrl : <incorrect>
InternalUrl          : <correct>
ExternalUrl          : <correct domain....missing mail.>
0
 
LVL 49

Expert Comment

by:Akhater
ID: 36475995
InternalNLBBypassUrl  is not to be changed and can be ignored,

what about get-oabvirtualdirectory | fl *url* ?
0
 
LVL 2

Author Comment

by:mvalpreda
ID: 36476008
get-oabvirtualdirectory | fl *url*

These entries are correct.
0
 
LVL 49

Expert Comment

by:Akhater
ID: 36476019
vale,

please open an outlook 2007/2010 client ctrl + Right click on the icon in the system tray and test email autoconfig

uncheck all boxes and keep only autodiscover.

enter username/password and run the test.

when do go to the last tab (xml) and find the url still pointing to the incorrect domain and share it with me
0
 
LVL 8

Expert Comment

by:praveenkumare_sp
ID: 36477420
did u change the urls n accordance to microsoft KB 940726 ??
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Monitor incoming/outgoing email 4 15
How to update GAL in O365? 4 32
Move a email in Outlook 2016 5 66
Citrix ServerAd/Exchange 5 30
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
Large Outlook files lead to various unwanted errors and corruption issues. Furthermore, large outlook files can also make Outlook take longer to start-up, search, navigate, and shut-down. So, In this article, i will discuss a method to make your Out…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question