• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 67
  • Last Modified:

Exchange/outlook certificate/login problem

We have two exchange servers, one legacy that's going to be run down next month, and a new one.
Old one is exchange 2010SP2 running on server 2008R2, new is 2010SP3 running on server 2012.

Now after we set up a new exchange-certificate on the 2012-server, every new workstation installed keeps asking for certificate confirmation and while using outlook, it continously prompts for login (if you press cancel, Outlook starts working just fine).

Any hints?
1 Solution
Simon Butler (Sembee)ConsultantCommented:
Did you install a trusted SSL certificate?
Have you changed all of the URLs to match the new certificate?
Did you have a certificate on the old server? Are the URLs still valid for that server as well?

You probably need to correct the Exchange configuration.


When you setup Exchange Server it creates a default self-signed certificate for internal use and the common name on it is usually the machinename.domainname, when you installed the new certificate  you did with your external (internet facing) name which is normal but now you need to replacement he fully qualified domain name (FQDN) of the URL that is stored in the following objects:

The Service Connection Point for the Autodiscover
The InternalUrl of Exchange Web Service (EWS)
The InternalUrl of the OAB Web service

Here is what worked for me: http://support.microsoft.com/kb/940726 

After this, make sure all your DNS, MX records and firewall points to the new server.
JarkkoJiiAuthor Commented:
I've requested that this question be deleted for the following reason:

no help, sorry.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now