Solved

Exchange 2010 Single Name Certificate

Posted on 2013-11-24
3
645 Views
Last Modified: 2013-11-29
Hi Guys
I have an exchange 2010 environment which uses UCC certificate with 2 names

owa.mydomain.com
servername.domain.local (internal Server Name)

now that the rules for SSL certificates don't allow me have (internal Server Name) included in the server

i renewed the SSL without it and configured most of the services to use owa.mydomain.com (External Address)
Works like a charm but all me internal users get a certificate error about the servername.domain.local (internal Server Name) not being trusted

Has anyone bypassed this issue
Thanks for your help in advance
0
Comment
Question by:Sabi Goraya
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 31

Assisted Solution

by:Gareth Gudger
Gareth Gudger earned 100 total points
ID: 39673667
Yes, you can configure all internal and external URLs in Exchange Web Services with owa.mydomain.com and then use split-brain DNS. So basically create a zone in your internal DNS for mydomain.com with all the same records as you have externally, except point them to the internal IPs.
0
 
LVL 4

Accepted Solution

by:
Sabi Goraya earned 0 total points
ID: 39673678
Thanks Diggisaur

I ahve alreayd pointed the DNS as required

but because the clients are looking fo rthe internal server the message still says that localserver.local is not trusted

anyway i found the solution to teh issue already

Just for ref for others
1) Change all the internal and external URL's to teh single name
2) Configure Split DNS
3) http://support.microsoft.com/kb/940726 to change the RCP client address


DONE!!!

Thanks for you quick response Mate

http://support.microsoft.com/kb/940726
0
 
LVL 4

Author Closing Comment

by:Sabi Goraya
ID: 39684983
Found teh solution ain few Minutes of posting teh question and tested the solution myself.
Thanks
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question