Solved

My exchange 2013 certifiacte Error and Outlook Anywhere

Posted on 2013-12-01
10
535 Views
Last Modified: 2013-12-02
Hi,

Fresh Installation:
Server1: Windows Server 2008R2, DNS, AD (mydomain.local), DC

Server2: Windows Server 2008R2, Exchange 2013

DynDNS: host.dyndns.org, configured in router and made exchange 2013 as DMZ

Domain Registrar: domainmonister.com and I made the following DNS changes:
CNAME: exchage.mydomain.com = host.dyndns.org
CNAME: autodiscover.mydomain.com = host.dyndns.org
MX= exchange.mydomain.com

Configured smart host in the exchange server 2013 and everything was ready.

At the begging I was able to send and receive emails internally and globally using Outlook Web App and Outlook Anywhere. Then I configured internal & external URLs as (exchange.mydomain.com)

After that I created a new certificate adding the following:
exchange
192.168.1.151
exchange.mydomain.local
exchange.mydomain.com
mydomain.com
Autodiscover.mydomain.local
Autodiscover.mydomain.com

Right now I'm totally confused and don't know what to do. Outlook is not working and even Outlook Web Access

Please help
0
Comment
Question by:mob_dream
  • 7
  • 3
10 Comments
 
LVL 35

Expert Comment

by:Mahesh
ID: 39688691
are you able to resolve exchange.mydomain.com and autodiscover.mydomain.com from internal network ?
have you installed certificate on Exchnage CAS server ?
Have you bind certificate to exchnage services ?

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688719
Thanks Mahesh for your support. Can you please help me step by step I'm really so confused and a beginner in this technology.

Sorry I found all your questions are difficult.
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 39688736
How you generated certificates ? I mean from which Certificate authority ?
Please check beow articles for instaling certificates on Exchange CAS servers
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
In above article bottom u will find part 2 and 3 as well
http://exchangeserverpro.com/exchange-2010-ssl-certificates/

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688873
I created a self-sign certificate from exchange 2013 itself.
0
 

Author Comment

by:mob_dream
ID: 39689200
OK,
Please help me with this, I followed the instructions in the link below to solve my issues with internal people:
http://exchange.sembee.info/network/split-dns.asp

That didn't work and I deleted the new zone created. Right now when I open OWA and type username & password and press enter. The page give me blank white page and nothing loading !!

Any support will be appreciate it.

Regards
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 

Author Comment

by:mob_dream
ID: 39689271
I think I found something. I restarted the exchange server yesterday and after that I cannot loggin via any web service (OWA, ECP). I checked the server manager and found this error below, I thought it's from certificate but I think this is something else:


The Windows Process Activation Service failed to generate an application pool config file for application pool 'MSExchangeOWAAppPool'. The error type is '7'. To resolve this issue, please ensure that the applicationhost.config file is correct and recommit the last configuration changes made. The data field contains the error number.

Any advise

Thanks
0
 
LVL 35

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39689289
Just check your all exchange services are running, IIS services and application pools are running in service.msc on Exchange CAS servers
If you are changing Internal and External URLs to same, then make sure 1st the external URL is resolvable through internal DNS servers (i.e. Split DNS)
Probably you need to create same name dns zone as your external SMTP domain name
Also you must need to install SSL certificate on CAS server mentioned in your earlier comment.Check if you already have installed it on CAS server and if you have assigned the Exhange services to that.

Also you need to change External URL on all virtual directories in IIS to reflect public dns names

Refer below article on Simon (Exchange MVP) website below for detailed info and steps

http://exchange.sembee.info/2010/install/clientaccesshostnames.asp

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39689330
OK now I have all services running except the following:
- Web management Service (check error attached)

Other services are set to start manual or something like that. Also right now I'm unable to login to OWA or ECP (Exchnage 2013) to check external or internal URLs.


What do you think?
error.jpg
0
 

Author Comment

by:mob_dream
ID: 39689726
I was able to get my Exchange 2013 OWA and ECP back by following:

http://www.experts-exchange.com/Security/Operating_Systems_Security/Q_28060526.html
0
 

Author Closing Comment

by:mob_dream
ID: 39689786
Thanks for everything you are the only one who tried to support me.


Regards,
Mohammed Bazarah
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
If you don't know how to downgrade, my instructions below should be helpful.
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now