• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1062
  • Last Modified:

Muthual Authentication

My two Exchange Servers suddenly stopped to configure Outlook clients via autodiscovery.  Srv06 is running Exchange Server 2010 and Srv07 is running Exchange Server 2012.  The both are virtual servers running under a Windows Server 2008 with Hyper-V.

The testexchangeconnectivity website reports the following errors:

Srv06 (Exchange 2010):
Testing SSL mutual authentication with the RPC proxy server.
Verification of mutual authentication failed.
The certificate common name *.larsoft.net doesn't validate against the mutual authentication string that was provided: msstd:srv06.larsoft.net


Srv07 (Exchange 2013):
Testing SSL mutual authentication with the RPC proxy server.
Verification of mutual authentication failed.
The certificate common name *.larsoft.net doesn't validate against the mutual authentication string that was provided: msstd:srv07.larsoft.net

The certificate seems to be ok.  It's a wildcard certificate (*.larsoft.net) for both servers, it's issued by Comodo and the expiration date is May, 30, 2013.

Opening the certificate in Exchange Management Console, the certificate status is "This certificate is OK."

Do you have any idea of what is happening with my Exchange Servers?

Thanks in advance,

Luciano Reis
0
informago
Asked:
informago
  • 2
1 Solution
 
informagoAuthor Commented:
The result of Get-ExchangeCertificate on Srv06 result the following:

Thumbprint   Services   Subject
<thumb>        IP..S.        CN=Srv06
<thumb>        ......           CN=WMSvc-Srv06
<thumb>        ...W..        CN=*.larsoft.net, OU=comodo SSL Wildcard, OU=Dom...


The same command on Srv07 result the following:

Thumbprint   Services   Subject
<thumb>        ....S..     CN=Microsoft Exchange...
<thumb>        IP.WS..  CN=Srv07
<thumb>        .......      CN=WMSvc-Srv07
<thumb>        ...WS..   CN=*.larsoft.net, OU=Comodo...
0
 
informagoAuthor Commented:
I found the answer here:

http://www.cgoosen.com/2010/11/outlook-anywhere-and-wildcard-certificates/

It's was basically:

Set-OutlookProvider -Identity EXPR -CertPrincipalName msstd:*.larsoft.net
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now