Solved

Outlook 2013 Certificate Error

Posted on 2013-12-11
7
400 Views
Last Modified: 2013-12-23
I'm in the process of moving mailboxes from one Exchange 2010 server to another Exchange 2010 server.  

I set up a CAS array object.

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28189035.html

The issue I'm having now is that I get a warning upon launhcing Outlook that states "The-name-on-the-security-certificate-is-invalid-or-does-not-match-the-name-of-the-site".

Where can I start to troubleshoot this?
0
Comment
Question by:LCNW
  • 5
  • 2
7 Comments
 
LVL 1

Author Comment

by:LCNW
Comment Utility
It appears my AutoDiscoverServiceInternalUri values do not match. I'm adjusting this and will see what happens.
0
 
LVL 1

Author Comment

by:LCNW
Comment Utility
I adjusted this. It removed one error. Now I'm getting an expired cert error. Both servers have matching certs that are not expired. It's our RapidSSL cert. I'm still looking around.
0
 
LVL 1

Author Comment

by:LCNW
Comment Utility
Where can I look to find the expired cert? I tried the MMC and the registry.
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 1

Author Comment

by:LCNW
Comment Utility
Anyone? I'm stuck.
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
Comment Utility
Certificates are stored on the server only.
You probably do not have the host names set up correctly in Exchange.
Refer to my article on this process: http://semb.ee/hostnames

RapidSSL don't do UC type certificates unless something has changed, which means you probably have a single name or wildcard SSL certificate. That will almost certainly mean split DNS will need to be used.

Do ensure that you are NOT using the CAS Array address for anything other than the CAS Array - so the host name should be unique to that task.

Simon.
0
 
LVL 1

Author Comment

by:LCNW
Comment Utility
I am doing split DNS and I have a wildcard cert. The error is for a cert for www. Which we don't manage so I don't understand how Outlook is asking for it. The CAS array object is unique to it's task. Simply a pointer so I can flip a DNS record on the back end.
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
Comment Utility
One of your URLs must be wrong, or Outlook is unable to connect to it and it is accessing an external web host. Going through my article as I have outlined above will fix that in most cases.

Simon.
0

Featured Post

Promote certifications in your email signature

Has your company recently won an award or achieved a certification? They'll no doubt want to show it off. Email signature images used to promote certifications & awards can instantly establish credibility with a recipient and provide you with numerous benefits.

Join & Write a Comment

Outlook Free & Paid Tools
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now