PlatinumITS
asked on
Outlook 2010 Reports The name of the security certificate is invalid or does not match the name of the site Connecting to Exchange 2007
I have a UCC AAA certificate with a different FQDN name than the Netbios name of the server. Recently I got a "The name of the security certificate is invalid or does not match the name of the site" when outlook 2010 clients start up on the internal LAN. Yes, Ive read http://support.microsoft.com/kb/940726 and http://www.shudnow.net/2007/08/10/outlook-2007-certificate-error/ Im having problem with the exchange management shell accepting the command. Here is exactly what im typing (with edit to the names)
Set-ClientAccessServer -Identity “ServerNetBIosName” -AutodiscoverServiceIntern
* Note i for netbios name its a single name and does not include the .company.local, in this example the netbios name is webmail
This fails for all the commands shown in the articles. The error is:
Set-ClientAccessServer : The operation could not be performed because object 'w
ebmail' could not be found on domain controller 'xxx.company.local'.
At line:1 char:23
I can ping the name webmail, webmail.company.com and use IE to nav to it with the \oab and \ews suffixes. There is a DNS a record for webmail. HELP!
Set-ClientAccessServer -Identity “ServerNetBIosName” -AutodiscoverServiceIntern
* Note i for netbios name its a single name and does not include the .company.local, in this example the netbios name is webmail
This fails for all the commands shown in the articles. The error is:
Set-ClientAccessServer : The operation could not be performed because object 'w
ebmail' could not be found on domain controller 'xxx.company.local'.
At line:1 char:23
I can ping the name webmail, webmail.company.com and use IE to nav to it with the \oab and \ews suffixes. There is a DNS a record for webmail. HELP!
Last Comment
ASKER
I have 2 domain controllers, both run DNS and cross replicate and both can ping that name and both show the A record in DNS and can resolve it, as can the mail server.
Just to be sure, your server called webmail does host your CAS server role?
ASKER
Its not the real server netbios name, its just an a record that points at the server, and yes, its the only mail server.
try running the script without the weird inverted commas: ““
Copy the code below and try to run it:
Copy the code below and try to run it:
Set-ClientAccessServer -Identity "webmail" –AutodiscoverServiceInternalURI https://webmail.company.local/autodiscover/autodiscover.xml
ASKER
Same error. By the way, they are not commas, they are quotes. I think i was able to use the internal FQDN previously, such as webmail.company.local rather than just webmail Does it matter?
Can someone do a Get-ClientAccessServer -Identity CASServer | FL and report back the values for AUTODISCOVERSERVICECN and AUTODISCOVERSERVICEINTERNA
Can someone do a Get-ClientAccessServer -Identity CASServer | FL and report back the values for AUTODISCOVERSERVICECN and AUTODISCOVERSERVICEINTERNA
If you do a Get-ClientAccessServer
AutoDiscoverServiceCN returns only the HOSTNAME
AutoDiscoverServiceInterna
Hope this helps!!!
PS: With regards to commas / quotes (You know what I mean!!!)
AutoDiscoverServiceCN returns only the HOSTNAME
AutoDiscoverServiceInterna
Hope this helps!!!
PS: With regards to commas / quotes (You know what I mean!!!)
ASKER
My hostname is the server name (mismatch with the certificate name) thought the URI value is correct.
Just to test Change the URI to your external URL and see if you still get the issue.
ASKER
ok, testing....
ASKER
Im sorry, it is already set to the outside FQDN.
So it is set to:
Set-ClientAccessServer -Identity "webmail" –AutodiscoverServiceIntern
Is has to be the URL that the error is about. If the certificate error refers to your server name then you would have to ensure that the correct services is assigned to the NON self signed certificate.
When you go to EMS > Server Configuration and look at the certificate status, what does it say?
Set-ClientAccessServer -Identity "webmail" –AutodiscoverServiceIntern
Is has to be the URL that the error is about. If the certificate error refers to your server name then you would have to ensure that the correct services is assigned to the NON self signed certificate.
When you go to EMS > Server Configuration and look at the certificate status, what does it say?
ASKER
See image, no
snap.JPG
snap.JPG
When you go to EMS > Server Configuration and look at the certificate status on the CAS box, what does it say?
ASKER
Be more specific. The Management console or the management shell. And where exactly or what exact command.
Sorry Exchange Management Console
ASKER
where?
ASKER
see image
snap2.JPG
snap2.JPG
ASKER
Any ideas?
Try the following:
Set-ClientAccessServer -Identity "triad-mail" –AutodiscoverServiceInternalURI https://webmail.company.local/autodiscover/autodiscover.xml
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
I had to set all three per that article. Also my default website is OWA, not Default Web Site...So it worked.thanks.
ASKER
Thanks!
Exchange
Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.
213K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
Open in new window
If that is the case, do the following: (Assuming that you have more than one domain controller and the DNS name was configured on another domain controller)
1. Connect to your domain controller specified above xxx.company.local and ensure that the DNS name has replicated to this domain controller.
Hope this helps!!!