How modify existing Exchange 2010 Client Access Array?
Hi,
Imagine 3 exchanges servers with the DAG roles setup. The client access array has been setup but with the external FQDN instead of the internal which causes some troubles to setup a certificate for Outlook Anywhere.
Is it a way to modify the existing Client Access Array name for an internal FQDN (the DAG FQDN in fact) ? If yes, what are the consequences and risks?
Last info, servers are in production.
Imagine 3 exchanges servers with the DAG roles setup. The client access array has been setup but with the external FQDN instead of the internal which causes some troubles to setup a certificate for Outlook Anywhere.
Is it a way to modify the existing Client Access Array name for an internal FQDN (the DAG FQDN in fact) ? If yes, what are the consequences and risks?
Last info, servers are in production.
I would look at the Set-ClientAccessArray command.. specifically internally you will want to set the AutoDiscoverInternalUri
This sets up a Service Connection Point in AD - which is the first point of contact for a domain-joined workstation internally.
This sets up a Service Connection Point in AD - which is the first point of contact for a domain-joined workstation internally.
ASKER
Thanks for your answers.
Akhater, can you please give me more details on the commands? Regarding your question, here is the config. The CAS Array has the same name as the Outlook Anywhere. On the server, there is 2 SSL. One only internally that came with the server containing the server name only and I bought with the FQDN external name that matches with CAS Array and Outlook Anywhere.
Now the problem is, if I add to the FQDN external SSL the IIS connection, all the computers internally ask to validate the new certificate at each logon and that is messy.
If you think that there is other thing to be done, please feel free to let me know =)
Akhater, can you please give me more details on the commands? Regarding your question, here is the config. The CAS Array has the same name as the Outlook Anywhere. On the server, there is 2 SSL. One only internally that came with the server containing the server name only and I bought with the FQDN external name that matches with CAS Array and Outlook Anywhere.
Now the problem is, if I add to the FQDN external SSL the IIS connection, all the computers internally ask to validate the new certificate at each logon and that is messy.
If you think that there is other thing to be done, please feel free to let me know =)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I see. I'll investigate then after changing this. I'll have a clear view.
Thanks for your help!
Thanks for your help!
It is very easy to change the cas array name or even to delete it and create a new one
however the cas array name is not related in anyway to the certificate and it doesn't have an internal and external fqdn so I am not sure i follow you
finally the risks are that you will have client disconnection at a point in time