?
Solved

Exchange/outlook certificate/login problem

Posted on 2014-04-17
3
Medium Priority
?
58 Views
Last Modified: 2015-04-07
We have two exchange servers, one legacy that's going to be run down next month, and a new one.
Old one is exchange 2010SP2 running on server 2008R2, new is 2010SP3 running on server 2012.

Now after we set up a new exchange-certificate on the 2012-server, every new workstation installed keeps asking for certificate confirmation and while using outlook, it continously prompts for login (if you press cancel, Outlook starts working just fine).

Any hints?
0
Comment
Question by:JarkkoJii
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 1500 total points
ID: 40006374
Did you install a trusted SSL certificate?
Have you changed all of the URLs to match the new certificate?
Did you have a certificate on the old server? Are the URLs still valid for that server as well?

You probably need to correct the Exchange configuration.

http://semb.ee/hostnames2010

Simon.
0
 
LVL 11

Expert Comment

by:hecgomrec
ID: 40009947
When you setup Exchange Server it creates a default self-signed certificate for internal use and the common name on it is usually the machinename.domainname, when you installed the new certificate  you did with your external (internet facing) name which is normal but now you need to replacement he fully qualified domain name (FQDN) of the URL that is stored in the following objects:

The Service Connection Point for the Autodiscover
The InternalUrl of Exchange Web Service (EWS)
The InternalUrl of the OAB Web service


Here is what worked for me: http://support.microsoft.com/kb/940726 

After this, make sure all your DNS, MX records and firewall points to the new server.
0
 

Author Comment

by:JarkkoJii
ID: 40709955
I've requested that this question be deleted for the following reason:

no help, sorry.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question