Solved

My exchange 2013 certifiacte Error and Outlook Anywhere

Posted on 2013-12-01
10
548 Views
Last Modified: 2013-12-02
Hi,

Fresh Installation:
Server1: Windows Server 2008R2, DNS, AD (mydomain.local), DC

Server2: Windows Server 2008R2, Exchange 2013

DynDNS: host.dyndns.org, configured in router and made exchange 2013 as DMZ

Domain Registrar: domainmonister.com and I made the following DNS changes:
CNAME: exchage.mydomain.com = host.dyndns.org
CNAME: autodiscover.mydomain.com = host.dyndns.org
MX= exchange.mydomain.com

Configured smart host in the exchange server 2013 and everything was ready.

At the begging I was able to send and receive emails internally and globally using Outlook Web App and Outlook Anywhere. Then I configured internal & external URLs as (exchange.mydomain.com)

After that I created a new certificate adding the following:
exchange
192.168.1.151
exchange.mydomain.local
exchange.mydomain.com
mydomain.com
Autodiscover.mydomain.local
Autodiscover.mydomain.com

Right now I'm totally confused and don't know what to do. Outlook is not working and even Outlook Web Access

Please help
0
Comment
Question by:mob_dream
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 3
10 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39688691
are you able to resolve exchange.mydomain.com and autodiscover.mydomain.com from internal network ?
have you installed certificate on Exchnage CAS server ?
Have you bind certificate to exchnage services ?

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39688719
Thanks Mahesh for your support. Can you please help me step by step I'm really so confused and a beginner in this technology.

Sorry I found all your questions are difficult.
0
 
LVL 37

Expert Comment

by:Mahesh
ID: 39688736
How you generated certificates ? I mean from which Certificate authority ?
Please check beow articles for instaling certificates on Exchange CAS servers
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
In above article bottom u will find part 2 and 3 as well
http://exchangeserverpro.com/exchange-2010-ssl-certificates/

Mahesh
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 

Author Comment

by:mob_dream
ID: 39688873
I created a self-sign certificate from exchange 2013 itself.
0
 

Author Comment

by:mob_dream
ID: 39689200
OK,
Please help me with this, I followed the instructions in the link below to solve my issues with internal people:
http://exchange.sembee.info/network/split-dns.asp

That didn't work and I deleted the new zone created. Right now when I open OWA and type username & password and press enter. The page give me blank white page and nothing loading !!

Any support will be appreciate it.

Regards
0
 

Author Comment

by:mob_dream
ID: 39689271
I think I found something. I restarted the exchange server yesterday and after that I cannot loggin via any web service (OWA, ECP). I checked the server manager and found this error below, I thought it's from certificate but I think this is something else:


The Windows Process Activation Service failed to generate an application pool config file for application pool 'MSExchangeOWAAppPool'. The error type is '7'. To resolve this issue, please ensure that the applicationhost.config file is correct and recommit the last configuration changes made. The data field contains the error number.

Any advise

Thanks
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39689289
Just check your all exchange services are running, IIS services and application pools are running in service.msc on Exchange CAS servers
If you are changing Internal and External URLs to same, then make sure 1st the external URL is resolvable through internal DNS servers (i.e. Split DNS)
Probably you need to create same name dns zone as your external SMTP domain name
Also you must need to install SSL certificate on CAS server mentioned in your earlier comment.Check if you already have installed it on CAS server and if you have assigned the Exhange services to that.

Also you need to change External URL on all virtual directories in IIS to reflect public dns names

Refer below article on Simon (Exchange MVP) website below for detailed info and steps

http://exchange.sembee.info/2010/install/clientaccesshostnames.asp

Mahesh
0
 

Author Comment

by:mob_dream
ID: 39689330
OK now I have all services running except the following:
- Web management Service (check error attached)

Other services are set to start manual or something like that. Also right now I'm unable to login to OWA or ECP (Exchnage 2013) to check external or internal URLs.


What do you think?
error.jpg
0
 

Author Comment

by:mob_dream
ID: 39689726
I was able to get my Exchange 2013 OWA and ECP back by following:

http://www.experts-exchange.com/Security/Operating_Systems_Security/Q_28060526.html
0
 

Author Closing Comment

by:mob_dream
ID: 39689786
Thanks for everything you are the only one who tried to support me.


Regards,
Mohammed Bazarah
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question