• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 93
  • Last Modified:

Autodiscover in Exchange 2010

Try to setup autodiscover but it fails. When I test under a handheld, it always prompt for "Username, password or client certificate incorrect". I need to manually input the information.

I have already setup a CNAME record on the DNS and apply a wildcard certficate *.mydomain.com under GoDaddy. Are there anything that I have also overlooked ?

Thx
0
AXISHK
Asked:
AXISHK
  • 4
  • 4
  • 2
  • +2
4 Solutions
 
suriyaehnopCommented:
Does issue happened on Outlook client? You may try the autodiscover using below link and verify it is working or not


https://testconnectivity.microsoft.com

If not mistaken, i read somewhere a wild card certificate is not recommended in exchange 2010
0
 
Todd NelsonSystems EngineerCommented:
Have the Exchange URLs been configured properly?  Currently, your autodiscover service connection point may contain an FQDN that isn't included in your certificate.

Check the URLs using this reference ... https://oddytee.wordpress.com/2016/06/24/check-exchange-urls-via-management-shell/

The autodiscover URI should look something similar to this ... https://autodiscover.mydomain.com/autodiscover/autodiscover.xml.  If not, you may have connection issues--assuming the DNS records are configured properly.

Use this reference to configure the URI properly ... https://technet.microsoft.com/en-us/library/bb125157(v=exchg.141).aspx
0
 
AXISHKAuthor Commented:
Autodiscover pass with a warning.
AutoDiscover.png
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Jackie ManCommented:
When I test under a handheld, it always prompt for "Username, password or client certificate incorrect". I need to manually input the information. .

Handled is running what OS and version?
0
 
suriyaehnopCommented:
Have try to export the cert and install on that phone?
0
 
Jackie ManCommented:
Settings -> Security

Under Credential storage, select Install from device storage

install cert from device storage
The above procedure is for Samsung Galaxy S5. Other android phones should have similar prodedure.
0
 
Tej Pratap Shukla ~DexterServer AdministratorCommented:
Hi
You should check this link you may find the solution to fix Client Certificate Error.
http://exchange-server-guide.blogspot.in/2014/07/resolve-exchange-autodiscover-error-600.html
0
 
AXISHKAuthor Commented:
Godaddy root and intermediate certificates have been installed on the Andriod. Also test the connection "Autodiscover.<your domain>/autodiscover/autodiscover.xml" and it works fine.

Is it because of the wildcard certificates (*.mydomain.com)  installed on Exchange ?

Thx
0
 
Jackie ManCommented:
Is it because of the wildcard certificates (*.mydomain.com)  installed on Exchange ?

YES

"The Most Android based smart phone applications use Wildcard SSL security to secure their user’s data while they exchange information through the device with web servers. Wildcard SSL certificates secure website URLs and unlimited numbers of their subdomains."

Source: https://www.rapidsslonline.com/blog/understanding-wildcard-ssl-validation-for-the-android-platform/
0
 
AXISHKAuthor Commented:
Do u mean I need to replace the wizard certificate and  explicitly state the host names used in the certficate ?

Thx
0
 
Jackie ManCommented:
Do u mean I need to replace the wizard certificate and  explicitly state the host names used in the certificate ?

Yes

Wildcard certificate match

The certificate's Subject field contains the common name as the wildcard character (*) plus a single domain or subdomain. For example, *.contoso.com or *.eu.contoso.com. The *.contoso.com wildcard certificate can be used for:
www.contoso.com
ftp.contoso.com
mail.contoso.com

Source: https://technet.microsoft.com/en-us/library/dd351044%28v=exchg.160%29.aspx?f=255&MSPPError=-2147217396
0
 
AXISHKAuthor Commented:
Thx
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 4
  • 4
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now