sidelogic
asked on
Exchange SSL error for internal users. Works fine for external
Due to the new rules about SSL for internal domains I have a problem. We just replaced our SSL on our exchange server and lost the ability to have internal domain on it. We are now getting SSL errors on everyone using outlook.
Anyone have a solution to this as we have many clients that will run into this issue moving forward.
Anyone have a solution to this as we have many clients that will run into this issue moving forward.
Internal SRV records are NOT required, and a waste of time unless you don't have Autodiscover.example.com on the certificate AND you have clients on your network which are not members of the domain.
The changes required are pretty straight forward - I have outlined them here:
http:/semb.ee/hostnames
Simon.
The changes required are pretty straight forward - I have outlined them here:
http:/semb.ee/hostnames
Simon.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
That worked great! Sembe your link took me to no article so you may want to check on that...
The EE system got in the way as it was missing an extra slash. It should have been http://semb.ee/hostnames
Simon.
Simon.
You can use SRV records for client discovery instead of Autodiscover to eliminate cert errors
http://acbrownit.wordpress.com/2012/12/20/internal-dns-and-exchange-autodiscover/
Also i suggest you to change your internal URLs to match with external URLs (Split DNS) to avoid cert errors
Mahesh