troubleshooting Question

Exchange 2010: Outlook anywhere/Outlook 20XX/ and OWA certificate error

Avatar of Ryan Mignosa
Ryan MignosaFlag for United States of America asked on
Exchange
7 Comments2 Solutions100 ViewsLast Modified:
Running Exchange 2010 SP3 on windows server 2008 R2 SP1
This is a single server exchange environment.
Exchange server name:  exchange.gpr.com
Default website:  webmail.grandpacificresorts.com


I recently renewed our exchange SSL certificate, because although Outlook Anywhere is configured there was no SAN for autodiscover.  The new certificate request was created using the EMC and installed the same way.  Lastly IMAP, POP, IIS, and SMTP services were assigned to the certificate.  FYI no virtual directories have been set/changed via powershell since installing the new certificate and IIS has not been reset.  Finally the website defined in the certificate is webmail.grandpacificresorts.com with a SAN of autodiscover.grandpacificresorts.com.

Since installing the new certificate running Outlook Connectivity and Outlook Autodiscover tests on https://testconnectivity.microsoft.com/ now pass, but internal outlook clients and OWA generate the following error:

gpresorts.com  The name on the security certificate is invalid or does not match the name of the site

I can't figure out why Outlook would be referencing gpresorts.com and not grandpacificresorts.com.  I also can't figure out if this an autodiscover virtual directory configuration problem, a DNS issue, or other.

Autodiscover:  see attached results for get-autodiscovervirtual directory | fl

DNS:  below are the exchange related entries in each scope
         
               -Scope gpresorts.com
  • (same as parent folder)               Mail Exchanger (MX)                    gprmail1.gpr.com
  •        webmail                                         Host(A)                                           webmail
             -Scope grandpacificresorts.com
  • (same as parent folder)              Mail Exchanger (MX)                    gprmail1.gpr.com
  •        autodiscover                                Host(A)                                           192.168.0.37
  •        webmail                                        Host(A)                                           192.168.0.37
autodiscover.png
ASKER CERTIFIED SOLUTION
Adam Brown
Cloud Security Consultant

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Top Expert 2010

The Distinguished Expert awards are presented to the top veteran and rookie experts to earn the most points in the top 50 topics.

Join our community to see this answer!
Unlock 2 Answers and 7 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 7 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros