Outlook Certificate Error

Posted on 2012-08-29
Last Modified: 2012-09-18
We are getting this message when we open Outlook.
The name on the security certificate is invalid or does not match the name of the site.
Exchange 2007, All certificates are valid in Management Shell.
Question by:pbtexperts
    LVL 33

    Expert Comment

    Can you post a bit more information, cause we have no screenshots nor OL version nor output of management shell.

    Normally, such sort of issues you get is when you'r autodiscover cert doesn't have you're local server in your SAN.

    So it makes sense for you to run the cmdlet

    Test-OutlookWebServices | FL and provide the output to us.

    LVL 18

    Accepted Solution


    The information you've posted is a little vague, however this is a common issue of misconfiguration.

    Assuming is your public DNS name and .internaldomain.local is your internal DNS name.

    On your SSL UCC certificate you should have the following names set: OR - Certificate Name (CN) - SAN
    exchange2010name.internaldomain.local - SAN
    exchange2010name - SAN

    On your internal DNS you need to have a zone for and so that when you ping it internally it resolves to your Exchange server internal IP.

    If all has been set correctly, no prompt should appear and Outlook should just open perfectly. If you would like me to check, provide your OWA address.

    Author Comment

    I found I had the wrong certificate enabled for IIS, After enabling the correct certificate the error no longer comes up.

    Author Comment

    I've requested that this question be closed as follows:

    Accepted answer: 0 points for pbtexperts's comment #a38359608

    for the following reason:

    Very helpful site.
    LVL 18

    Expert Comment

    I provided a solution which explained that this is due to a "common issue of misconfiguration".

    The experts on this site spend time and assist you with your query either to the solution or provide enough information for you to get to the solution. I hope you understand this and I feel that my post should be awarded the points: http:#a38348289
    LVL 18

    Expert Comment

    I feel that my post should be awarded the points: http:#a38348289

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    When you are trying to access the server, have you ever encountered "The terminal server has exceeded the maximum number of allowed connection" error?  or "The user is attempting to log on to a Terminal Server in Remote Administration mode, but the …
    Experts-Exchange users below are the steps you can follow to upgrade your Lync server to latest CU's or cumulative updates. Note: Perform it during non-production hours.   Step 1: Backup your lync and SQL server database. Follow below article: h…
    how to add IIS SMTP to handle application/Scanner relays into office 365.
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now