?
Solved

Outlook 2013 Certificate Error

Posted on 2013-12-11
7
Medium Priority
?
410 Views
Last Modified: 2013-12-23
I'm in the process of moving mailboxes from one Exchange 2010 server to another Exchange 2010 server.  

I set up a CAS array object.

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28189035.html

The issue I'm having now is that I get a warning upon launhcing Outlook that states "The-name-on-the-security-certificate-is-invalid-or-does-not-match-the-name-of-the-site".

Where can I start to troubleshoot this?
0
Comment
Question by:LCNW
  • 5
  • 2
7 Comments
 
LVL 1

Author Comment

by:LCNW
ID: 39712566
It appears my AutoDiscoverServiceInternalUri values do not match. I'm adjusting this and will see what happens.
0
 
LVL 1

Author Comment

by:LCNW
ID: 39712620
I adjusted this. It removed one error. Now I'm getting an expired cert error. Both servers have matching certs that are not expired. It's our RapidSSL cert. I'm still looking around.
0
 
LVL 1

Author Comment

by:LCNW
ID: 39712660
Where can I look to find the expired cert? I tried the MMC and the registry.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 1

Author Comment

by:LCNW
ID: 39712994
Anyone? I'm stuck.
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 2000 total points
ID: 39713453
Certificates are stored on the server only.
You probably do not have the host names set up correctly in Exchange.
Refer to my article on this process: http://semb.ee/hostnames

RapidSSL don't do UC type certificates unless something has changed, which means you probably have a single name or wildcard SSL certificate. That will almost certainly mean split DNS will need to be used.

Do ensure that you are NOT using the CAS Array address for anything other than the CAS Array - so the host name should be unique to that task.

Simon.
0
 
LVL 1

Author Comment

by:LCNW
ID: 39722166
I am doing split DNS and I have a wildcard cert. The error is for a cert for www. Which we don't manage so I don't understand how Outlook is asking for it. The CAS array object is unique to it's task. Simply a pointer so I can flip a DNS record on the back end.
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39729537
One of your URLs must be wrong, or Outlook is unable to connect to it and it is accessing an external web host. Going through my article as I have outlined above will fix that in most cases.

Simon.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I am posting this in case anyone runs into similar issues that I did, this may save you a lot of grief: Condition: 1. Your NetBIOS domain name contains an ampersand " & " character.  (e.g. AT&T) 2. You've tried to run any Microsoft installation…
After a recent Outlook migration from a 2007 to 2010 environment, some issues with Distribution List owners were realized. In this article, I explain how that was rectified.
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question