?
Solved

Autodiscover in Exchange 2010

Posted on 2016-07-27
12
Medium Priority
?
87 Views
Last Modified: 2016-08-03
Try to setup autodiscover but it fails. When I test under a handheld, it always prompt for "Username, password or client certificate incorrect". I need to manually input the information.

I have already setup a CNAME record on the DNS and apply a wildcard certficate *.mydomain.com under GoDaddy. Are there anything that I have also overlooked ?

Thx
0
Comment
Question by:AXISHK
  • 4
  • 4
  • 2
  • +2
12 Comments
 
LVL 19

Assisted Solution

by:suriyaehnop
suriyaehnop earned 332 total points
ID: 41732235
Does issue happened on Outlook client? You may try the autodiscover using below link and verify it is working or not


https://testconnectivity.microsoft.com

If not mistaken, i read somewhere a wild card certificate is not recommended in exchange 2010
0
 
LVL 17

Assisted Solution

by:Todd Nelson
Todd Nelson earned 332 total points
ID: 41732237
Have the Exchange URLs been configured properly?  Currently, your autodiscover service connection point may contain an FQDN that isn't included in your certificate.

Check the URLs using this reference ... https://oddytee.wordpress.com/2016/06/24/check-exchange-urls-via-management-shell/

The autodiscover URI should look something similar to this ... https://autodiscover.mydomain.com/autodiscover/autodiscover.xml.  If not, you may have connection issues--assuming the DNS records are configured properly.

Use this reference to configure the URI properly ... https://technet.microsoft.com/en-us/library/bb125157(v=exchg.141).aspx
0
 

Author Comment

by:AXISHK
ID: 41732263
Autodiscover pass with a warning.
AutoDiscover.png
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 52

Expert Comment

by:Jackie Man
ID: 41732277
When I test under a handheld, it always prompt for "Username, password or client certificate incorrect". I need to manually input the information. .

Handled is running what OS and version?
0
 
LVL 19

Expert Comment

by:suriyaehnop
ID: 41732301
Have try to export the cert and install on that phone?
0
 
LVL 52

Expert Comment

by:Jackie Man
ID: 41732315
Settings -> Security

Under Credential storage, select Install from device storage

install cert from device storage
The above procedure is for Samsung Galaxy S5. Other android phones should have similar prodedure.
0
 
LVL 12

Assisted Solution

by:Tej Pratap Shukla ~Dexter
Tej Pratap Shukla ~Dexter earned 332 total points
ID: 41732330
Hi
You should check this link you may find the solution to fix Client Certificate Error.
http://exchange-server-guide.blogspot.in/2014/07/resolve-exchange-autodiscover-error-600.html
0
 

Author Comment

by:AXISHK
ID: 41736992
Godaddy root and intermediate certificates have been installed on the Andriod. Also test the connection "Autodiscover.<your domain>/autodiscover/autodiscover.xml" and it works fine.

Is it because of the wildcard certificates (*.mydomain.com)  installed on Exchange ?

Thx
0
 
LVL 52

Expert Comment

by:Jackie Man
ID: 41737003
Is it because of the wildcard certificates (*.mydomain.com)  installed on Exchange ?

YES

"The Most Android based smart phone applications use Wildcard SSL security to secure their user’s data while they exchange information through the device with web servers. Wildcard SSL certificates secure website URLs and unlimited numbers of their subdomains."

Source: https://www.rapidsslonline.com/blog/understanding-wildcard-ssl-validation-for-the-android-platform/
0
 

Author Comment

by:AXISHK
ID: 41740140
Do u mean I need to replace the wizard certificate and  explicitly state the host names used in the certficate ?

Thx
0
 
LVL 52

Accepted Solution

by:
Jackie Man earned 1004 total points
ID: 41740145
Do u mean I need to replace the wizard certificate and  explicitly state the host names used in the certificate ?

Yes

Wildcard certificate match

The certificate's Subject field contains the common name as the wildcard character (*) plus a single domain or subdomain. For example, *.contoso.com or *.eu.contoso.com. The *.contoso.com wildcard certificate can be used for:
www.contoso.com
ftp.contoso.com
mail.contoso.com

Source: https://technet.microsoft.com/en-us/library/dd351044%28v=exchg.160%29.aspx?f=255&MSPPError=-2147217396
0
 

Author Closing Comment

by:AXISHK
ID: 41740232
Thx
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this post, I will showcase the steps for how to create groups in Office 365. Office 365 groups allow for ease of flexibility and collaboration between staff members.
Steps to fix error: “Couldn’t mount the database that you specified. Specified database: HU-DB; Error code: An Active Manager operation fail”
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
Suggested Courses

862 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question