Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 556
  • Last Modified:

My exchange 2013 certifiacte Error and Outlook Anywhere

Hi,

Fresh Installation:
Server1: Windows Server 2008R2, DNS, AD (mydomain.local), DC

Server2: Windows Server 2008R2, Exchange 2013

DynDNS: host.dyndns.org, configured in router and made exchange 2013 as DMZ

Domain Registrar: domainmonister.com and I made the following DNS changes:
CNAME: exchage.mydomain.com = host.dyndns.org
CNAME: autodiscover.mydomain.com = host.dyndns.org
MX= exchange.mydomain.com

Configured smart host in the exchange server 2013 and everything was ready.

At the begging I was able to send and receive emails internally and globally using Outlook Web App and Outlook Anywhere. Then I configured internal & external URLs as (exchange.mydomain.com)

After that I created a new certificate adding the following:
exchange
192.168.1.151
exchange.mydomain.local
exchange.mydomain.com
mydomain.com
Autodiscover.mydomain.local
Autodiscover.mydomain.com

Right now I'm totally confused and don't know what to do. Outlook is not working and even Outlook Web Access

Please help
0
mob_dream
Asked:
mob_dream
  • 7
  • 3
1 Solution
 
MaheshArchitectCommented:
are you able to resolve exchange.mydomain.com and autodiscover.mydomain.com from internal network ?
have you installed certificate on Exchnage CAS server ?
Have you bind certificate to exchnage services ?

Mahesh
0
 
mob_dreamAuthor Commented:
Thanks Mahesh for your support. Can you please help me step by step I'm really so confused and a beginner in this technology.

Sorry I found all your questions are difficult.
0
 
MaheshArchitectCommented:
How you generated certificates ? I mean from which Certificate authority ?
Please check beow articles for instaling certificates on Exchange CAS servers
http://www.msexchange.org/articles-tutorials/exchange-server-2010/management-administration/managing-certificates-exchange-server-2010-part1.html
In above article bottom u will find part 2 and 3 as well
http://exchangeserverpro.com/exchange-2010-ssl-certificates/

Mahesh
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
mob_dreamAuthor Commented:
I created a self-sign certificate from exchange 2013 itself.
0
 
mob_dreamAuthor Commented:
OK,
Please help me with this, I followed the instructions in the link below to solve my issues with internal people:
http://exchange.sembee.info/network/split-dns.asp

That didn't work and I deleted the new zone created. Right now when I open OWA and type username & password and press enter. The page give me blank white page and nothing loading !!

Any support will be appreciate it.

Regards
0
 
mob_dreamAuthor Commented:
I think I found something. I restarted the exchange server yesterday and after that I cannot loggin via any web service (OWA, ECP). I checked the server manager and found this error below, I thought it's from certificate but I think this is something else:


The Windows Process Activation Service failed to generate an application pool config file for application pool 'MSExchangeOWAAppPool'. The error type is '7'. To resolve this issue, please ensure that the applicationhost.config file is correct and recommit the last configuration changes made. The data field contains the error number.

Any advise

Thanks
0
 
MaheshArchitectCommented:
Just check your all exchange services are running, IIS services and application pools are running in service.msc on Exchange CAS servers
If you are changing Internal and External URLs to same, then make sure 1st the external URL is resolvable through internal DNS servers (i.e. Split DNS)
Probably you need to create same name dns zone as your external SMTP domain name
Also you must need to install SSL certificate on CAS server mentioned in your earlier comment.Check if you already have installed it on CAS server and if you have assigned the Exhange services to that.

Also you need to change External URL on all virtual directories in IIS to reflect public dns names

Refer below article on Simon (Exchange MVP) website below for detailed info and steps

http://exchange.sembee.info/2010/install/clientaccesshostnames.asp

Mahesh
0
 
mob_dreamAuthor Commented:
OK now I have all services running except the following:
- Web management Service (check error attached)

Other services are set to start manual or something like that. Also right now I'm unable to login to OWA or ECP (Exchnage 2013) to check external or internal URLs.


What do you think?
error.jpg
0
 
mob_dreamAuthor Commented:
I was able to get my Exchange 2013 OWA and ECP back by following:

http://www.experts-exchange.com/Security/Operating_Systems_Security/Q_28060526.html
0
 
mob_dreamAuthor Commented:
Thanks for everything you are the only one who tried to support me.


Regards,
Mohammed Bazarah
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 7
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now