Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!
Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!
Act now. This offer ends July 14, 2017.
Course Of The Month
3 days, 13 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
ActiveSync works internally, but not externally.
Posted on 2012-12-20
Hello Friends,
ActiveSync, which works internally, but not externally.
We are using exchange 2010 SP2 and Exchange Certificate is our internal root CA.
When I have test the Activesync using https://www.testexchangeconnectivity.com , getting error: "
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Validating certificate trust for Windows Mobile devices.
Certificate trust validation failed.
Test Steps
ExRCA is attempting to build certificate chains for certificate CN=mob.domain.com.
A certificate chain couldn't be constructed for the certificate."
Please advice me to resolve/ work activesync from externally aswell.
Additional Details
The certificate chain couldn't be built. You may be missing required intermediate certificates.
ActiveSync, which works internally, but not externally.
We are using exchange 2010 SP2 and Exchange Certificate is our internal root CA.
When I have test the Activesync using https://www.testexchangeconnectivity.com , getting error: "
Testing the SSL certificate to make sure it's valid.
The SSL certificate failed one or more certificate validation checks.
Validating certificate trust for Windows Mobile devices.
Certificate trust validation failed.
Test Steps
ExRCA is attempting to build certificate chains for certificate CN=mob.domain.com.
A certificate chain couldn't be constructed for the certificate."
Please advice me to resolve/ work activesync from externally aswell.
Additional Details
The certificate chain couldn't be built. You may be missing required intermediate certificates.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
2
8 Comments
Active 1 day ago
To make Activesync work externally, buy a 3rd party SSL certificate with at least the following names included in the cert:
autodiscover.yourdomain.co
mail.yourdomain.com (or whatever you prefer to use)
Then when it is installed and enabled, Activesync should work.
autodiscover.yourdomain.co
mail.yourdomain.com (or whatever you prefer to use)
Then when it is installed and enabled, Activesync should work.
So you mean we can not use internal CA for activeSync from externally? or any other option to use internal as well?
Active 1 day ago
The name on the certificate must be resolvable externally to the Public IP Address of your server. Does it?
If it doesn't I would suggest buying one that does and then it will work happily.
If it doesn't I would suggest buying one that does and then it will work happily.
You can use internal CA for ActiveSync certificate, but you need to allow not trusted certificates in activesync configuration on your mobile devices.
Do you have any other errors when checking with https://www.testexchangeconnectivity.com/
?
Try to enable "Ignore Trust for SSL" when checking ActiveSync.
Martin
Do you have any other errors when checking with https://www.testexchangeconnectivity.com/
?
Try to enable "Ignore Trust for SSL" when checking ActiveSync.
Martin
Featured Post
Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
In-place Upgrading Dirsync to Azure AD Connect
This article will help to fix the below errors for MS Exchange Server 2013
I. Certificate error "name on the security certificate is invalid or does not match the name of the site"
II. Out of Office not working
III. Make Internal URLs and Externa…
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center.
Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center.
Navigate to the Organization >> Ad…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center.
Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center.
Navigate to the Mail Flow >> Ac…
Suggested Courses
Course of the Month3 days, 13 hours left to enroll
Earn Certification
MTA - Cloud Fundamentals - 98-369
$59.00$53.10
690 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.