Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Exchange Autodiscover SSL error for Outlook anywhere

Posted on 2013-01-02
3
1 solution
Medium Priority
?
1,692 Views
Last Modified: 2013-01-05
This issue pertains to Autodiscover and Exchange 2010.

We have a single name certificate ( not a UCC) and I setup an SRV record in our public DNS zone to point to our server (mail.domain.com). But the SSL errors persist.

Error specifies that the name

autodiscover.domain.com does not match the name on the certificate.

Our certificate is set as mail.domain.com

This error only occurs for outlook anywhere ( external users using Outlook )

How do I stop Outlook from throwing this error all the time? www.testexchangeconnectivity.com passes our test for the SRV record and SSL certificate.

Also I noticed we have a wildcard record in our DNS Zone. I read a one line statement in another guide that Autodiscover does not like a wildcard record being set in the public DNS zone. Could this be the cause?

If I switch to an A record setup or CNAME setup we will need a UCC certificate correct?
0
Comment
Question by:Robc0918
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Join The Community
3 Comments
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 38736846
You must have a wildcard in your DNS so that autodiscover.example.com resolves.
You need to remove that - SRV records can only be used IF autodiscover.example.com doesn't resolve.

Simon.
0
 
LVL 17

Expert Comment

by:OriNetworks
ID: 38737035
There are alternatives to the autodiscover sub domain. You might want to look into using Autodiscover.xml
http://www.more2know.nl/2010/05/18/exchange-autodiscover-and-multiple-domains/
0
 
LVL 49

Accepted Solution

by:
Akhater earned 1500 total points
ID: 38739448
You basically have one of 2 solutions

1. delete the wild card from the DNS

2. add autodiscover in your dns and point it to the ip mail.domain.com and change your certificate to have autodiscover in the SAN
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Take Survey Now!
Question has a verified solution.

If you are experiencing a similar issue, please ask a related question
Outlook for dependable use in a very small business
Article by: John
Outlook for dependable use in a very small business   This article is about using the Outlook application (part of Microsoft Office) in a very small business, or for homeowners where dependability and reliability are critical requirements. This …
New-EdgeSubscription Fails with LDAP Server Unavailable error
Article by: fudgetek
A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
Exchange 2013: Generate a Certificate Request
Video by: Gareth
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
How to tell Microsoft Office that a word is NOT spelled correctly
Video by: Joe
This Experts Exchange video Micro Tutorial shows how to tell Microsoft Office that a word is NOT spelled correctly. Microsoft Office has a built-in, main dictionary that is shared by Office apps, including Excel, Outlook, PowerPoint, and Word. When …
Advertise Here
Suggested Courses

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Advertise Here