Exchange 2007 SSL Certs mismatch

sfmike64 used Ask the Experts™
I have a  client's server running Exchange 2007 and there is a single SSL certificate for external use. Unfortunately, the server goes to this certificate when it's accessed internally by Outlook.

I get a SSL mismatch error when launching Outlook 2007 for "sites." Allowing this to happen is OK, but not ideal.

What have I misconfigured here? Should I get a wildcard domain certificate?

The external certificate is for (internally the domain is domain.local).
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
James HIT Director

A UCC cert should be sufficient.
5 domain UCC cert from is $89.
This will allow you to add the local and .com domains and resolve this issue.
Starting with Exchange 2007, you would need a UC/SAN certificate that has both your internal AD domain name and public DNS domain name for your server.  A wildcard only allows one top level domain.  UC/SAN certificates allow for a couple different top level domains.

Ie.  exchangecas.domain.local and

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial