Dave Stone
asked on
Exchange 2013 Cert "The name on the security certificate is invalid or does not match the name of the site."
Hello,
I have just installed a new certificate for my new Exchange 2013 install. Purchased the cert from godaddy and downloaded it, installed it and completed the installation of the cert by assigning it to SMTP and IIS. Now when I open Outlook on a client I get a security alert stating that “The name on the security certificate is invalid or does not match the name of the site.” Our external site is nofinishline.us but our internal domain is nofinishline.local.
I ran some commands to see what the cert had for urls and I have attached the output. Now I know that I really don’t know what I am doing but shouldn’t the Auto discover url be the same as the external url? If so, how do I fix it, If not what do I have wrong?
Thank you
ExchangeCert.pdf
I have just installed a new certificate for my new Exchange 2013 install. Purchased the cert from godaddy and downloaded it, installed it and completed the installation of the cert by assigning it to SMTP and IIS. Now when I open Outlook on a client I get a security alert stating that “The name on the security certificate is invalid or does not match the name of the site.” Our external site is nofinishline.us but our internal domain is nofinishline.local.
I ran some commands to see what the cert had for urls and I have attached the output. Now I know that I really don’t know what I am doing but shouldn’t the Auto discover url be the same as the external url? If so, how do I fix it, If not what do I have wrong?
Thank you
ExchangeCert.pdf
What cmds did you run (most likely you mean powershell cmdlets, yes?) and what are their outputs? I didn't see them.
ASKER
Yes, powershell cmdlets. The outputs are in the attached file.
ASKER
Here are the outputs. Please see the attached file.
ExchangeCert.pdf
ExchangeCert.pdf
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You need to set these URLs, it seems they're missing.
Follow this: https://support.microsoft.com/en-us/kb/940726
Follow this: https://support.microsoft.com/en-us/kb/940726
ASKER
Holy smokes, this stuff is not for the faint of heart, is it? I will try these solution tomorrow morning when nobody needs the network in case I bring it down. Thanks.
ASKER
Would this problem also keep my activesync from working? It tells me it cannot connect to the server.
ASKER
I found the Srv on godaddy but I cannot find the DynDns Setup
If you do not use DynDns then you do not have to worry about that part. That was a "Just in Case".
This is a free tool from Digicert that will check your Exchange servers domain name setups and help you fix them.
https://www.digicert.com/internal-domain-name-tool.htm
https://www.digicert.com/internal-domain-name-tool.htm
ASKER
Thanks. Before doing anything I talked with Godaddy. They sent me instructions to "Reconfigure Microsoft Exchange Server to Use a Fully Qualified Domain Name. Should I do this?
https://www.godaddy.com/help/reconfiguring-microsoft-exchange-server-to-use-a-fully-qualified-domain-name-6281
https://www.godaddy.com/help/reconfiguring-microsoft-exchange-server-to-use-a-fully-qualified-domain-name-6281
ASKER
Thank you