Solved

My exchange 2013 certifiacte Error and Outlook Anywhere

Posted on 2013-12-01
10
537 Views
Last Modified: 2013-12-02
Hi,

Fresh Installation:
Server1: Windows Server 2008R2, DNS, AD (mydomain.local), DC

Server2: Windows Server 2008R2, Exchange 2013

DynDNS: host.dyndns.org, configured in router and made exchange 2013 as DMZ

Domain Registrar: domainmonister.com and I made the following DNS changes:
CNAME: exchage.mydomain.com = host.dyndns.org
CNAME: autodiscover.mydomain.com = host.dyndns.org
MX= exchange.mydomain.com

Configured smart host in the exchange server 2013 and everything was ready.

At the begging I was able to send and receive emails internally and globally using Outlook Web App and Outlook Anywhere. Then I configured internal & external URLs as (exchange.mydomain.com)

After that I created a new certificate adding the following:
exchange
192.168.1.151
exchange.mydomain.local
exchange.mydomain.com
mydomain.com
Autodiscover.mydomain.local
Autodiscover.mydomain.com

Right now I'm totally confused and don't know what to do. Outlook is not working and even Outlook Web Access

Please help
0
Comment
Question by:mob_dream
  • 7
  • 3
10 Comments
 
LVL 35

Expert Comment

by:Mahesh
ID: 39688691
are you able to resolve exchange.mydomain.com and autodiscover.mydomain.com from internal network ?
have you installed certificate on Exchnage CAS server ?
Have you bind certificate to exchnage services ?

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688719
Thanks Mahesh for your support. Can you please help me step by step I'm really so confused and a beginner in this technology.

Sorry I found all your questions are difficult.
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 39688736
How you generated certificates ? I mean from which Certificate authority ?
Please check beow articles for instaling certificates on Exchange CAS servers
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
In above article bottom u will find part 2 and 3 as well
http://exchangeserverpro.com/exchange-2010-ssl-certificates/

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688873
I created a self-sign certificate from exchange 2013 itself.
0
 

Author Comment

by:mob_dream
ID: 39689200
OK,
Please help me with this, I followed the instructions in the link below to solve my issues with internal people:
http://exchange.sembee.info/network/split-dns.asp

That didn't work and I deleted the new zone created. Right now when I open OWA and type username & password and press enter. The page give me blank white page and nothing loading !!

Any support will be appreciate it.

Regards
0
Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

 

Author Comment

by:mob_dream
ID: 39689271
I think I found something. I restarted the exchange server yesterday and after that I cannot loggin via any web service (OWA, ECP). I checked the server manager and found this error below, I thought it's from certificate but I think this is something else:


The Windows Process Activation Service failed to generate an application pool config file for application pool 'MSExchangeOWAAppPool'. The error type is '7'. To resolve this issue, please ensure that the applicationhost.config file is correct and recommit the last configuration changes made. The data field contains the error number.

Any advise

Thanks
0
 
LVL 35

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39689289
Just check your all exchange services are running, IIS services and application pools are running in service.msc on Exchange CAS servers
If you are changing Internal and External URLs to same, then make sure 1st the external URL is resolvable through internal DNS servers (i.e. Split DNS)
Probably you need to create same name dns zone as your external SMTP domain name
Also you must need to install SSL certificate on CAS server mentioned in your earlier comment.Check if you already have installed it on CAS server and if you have assigned the Exhange services to that.

Also you need to change External URL on all virtual directories in IIS to reflect public dns names

Refer below article on Simon (Exchange MVP) website below for detailed info and steps

http://exchange.sembee.info/2010/install/clientaccesshostnames.asp

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39689330
OK now I have all services running except the following:
- Web management Service (check error attached)

Other services are set to start manual or something like that. Also right now I'm unable to login to OWA or ECP (Exchnage 2013) to check external or internal URLs.


What do you think?
error.jpg
0
 

Author Comment

by:mob_dream
ID: 39689726
I was able to get my Exchange 2013 OWA and ECP back by following:

http://www.experts-exchange.com/Security/Operating_Systems_Security/Q_28060526.html
0
 

Author Closing Comment

by:mob_dream
ID: 39689786
Thanks for everything you are the only one who tried to support me.


Regards,
Mohammed Bazarah
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now