Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

My exchange 2013 certifiacte Error and Outlook Anywhere

Posted on 2013-12-01
10
540 Views
Last Modified: 2013-12-02
Hi,

Fresh Installation:
Server1: Windows Server 2008R2, DNS, AD (mydomain.local), DC

Server2: Windows Server 2008R2, Exchange 2013

DynDNS: host.dyndns.org, configured in router and made exchange 2013 as DMZ

Domain Registrar: domainmonister.com and I made the following DNS changes:
CNAME: exchage.mydomain.com = host.dyndns.org
CNAME: autodiscover.mydomain.com = host.dyndns.org
MX= exchange.mydomain.com

Configured smart host in the exchange server 2013 and everything was ready.

At the begging I was able to send and receive emails internally and globally using Outlook Web App and Outlook Anywhere. Then I configured internal & external URLs as (exchange.mydomain.com)

After that I created a new certificate adding the following:
exchange
192.168.1.151
exchange.mydomain.local
exchange.mydomain.com
mydomain.com
Autodiscover.mydomain.local
Autodiscover.mydomain.com

Right now I'm totally confused and don't know what to do. Outlook is not working and even Outlook Web Access

Please help
0
Comment
Question by:mob_dream
  • 7
  • 3
10 Comments
 
LVL 36

Expert Comment

by:Mahesh
ID: 39688691
are you able to resolve exchange.mydomain.com and autodiscover.mydomain.com from internal network ?
have you installed certificate on Exchnage CAS server ?
Have you bind certificate to exchnage services ?

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688719
Thanks Mahesh for your support. Can you please help me step by step I'm really so confused and a beginner in this technology.

Sorry I found all your questions are difficult.
0
 
LVL 36

Expert Comment

by:Mahesh
ID: 39688736
How you generated certificates ? I mean from which Certificate authority ?
Please check beow articles for instaling certificates on Exchange CAS servers
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
In above article bottom u will find part 2 and 3 as well
http://exchangeserverpro.com/exchange-2010-ssl-certificates/

Mahesh
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 

Author Comment

by:mob_dream
ID: 39688873
I created a self-sign certificate from exchange 2013 itself.
0
 

Author Comment

by:mob_dream
ID: 39689200
OK,
Please help me with this, I followed the instructions in the link below to solve my issues with internal people:
http://exchange.sembee.info/network/split-dns.asp

That didn't work and I deleted the new zone created. Right now when I open OWA and type username & password and press enter. The page give me blank white page and nothing loading !!

Any support will be appreciate it.

Regards
0
 

Author Comment

by:mob_dream
ID: 39689271
I think I found something. I restarted the exchange server yesterday and after that I cannot loggin via any web service (OWA, ECP). I checked the server manager and found this error below, I thought it's from certificate but I think this is something else:


The Windows Process Activation Service failed to generate an application pool config file for application pool 'MSExchangeOWAAppPool'. The error type is '7'. To resolve this issue, please ensure that the applicationhost.config file is correct and recommit the last configuration changes made. The data field contains the error number.

Any advise

Thanks
0
 
LVL 36

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39689289
Just check your all exchange services are running, IIS services and application pools are running in service.msc on Exchange CAS servers
If you are changing Internal and External URLs to same, then make sure 1st the external URL is resolvable through internal DNS servers (i.e. Split DNS)
Probably you need to create same name dns zone as your external SMTP domain name
Also you must need to install SSL certificate on CAS server mentioned in your earlier comment.Check if you already have installed it on CAS server and if you have assigned the Exhange services to that.

Also you need to change External URL on all virtual directories in IIS to reflect public dns names

Refer below article on Simon (Exchange MVP) website below for detailed info and steps

http://exchange.sembee.info/2010/install/clientaccesshostnames.asp

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39689330
OK now I have all services running except the following:
- Web management Service (check error attached)

Other services are set to start manual or something like that. Also right now I'm unable to login to OWA or ECP (Exchnage 2013) to check external or internal URLs.


What do you think?
error.jpg
0
 

Author Comment

by:mob_dream
ID: 39689726
I was able to get my Exchange 2013 OWA and ECP back by following:

http://www.experts-exchange.com/Security/Operating_Systems_Security/Q_28060526.html
0
 

Author Closing Comment

by:mob_dream
ID: 39689786
Thanks for everything you are the only one who tried to support me.


Regards,
Mohammed Bazarah
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question