Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Outlook 2016 for MAC throws SSL incorrect host name error

Posted on 2016-10-11
16
Medium Priority
?
351 Views
Last Modified: 2016-10-11
Hi experts, I'm using Exchange 2013 for my server. From outside the network, users get a prompt that shows my web server IP address along with the incorrect host name. That address is actually from my website that is hosted by a 3rd party. May I know how can I correct this to show the correct SSL certs? Windows client can get the correct cert but not MAC client.
0
Comment
Question by:totallypatrick
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
16 Comments
 
LVL 27

Expert Comment

by:MAS
ID: 41838187
Hi,
You have to configure the URLs and split dns. Then configure autodiscover URL.
Please check these to configure your Exchange URLs and autodiscover.
http://www.mustbegeek.com/configure-external-and-internal-url-in-exchange-2013/
https://www.experts-exchange.com/articles/13676/Out-Of-office-not-working.html
0
 
LVL 16

Expert Comment

by:Jason Crawford
ID: 41838203
Check for a wildcard DNS record.  Better yet try an nslookup for random subdomains of your domain.  Something like:

nslookup -q=a test.yourdomain.com

or

nslookup -q=a grizzlyadamshadabeard.yourdomain.com

If they return an IP chances are you have a wildcard DNS record that you should remove.  The issue is Outlook will query autodiscover.yourdomain.com upon startup, and just like the examples above DNS will return whatever the wildcard record is pointing at, most likely your webhost.
0
 
LVL 17

Expert Comment

by:Ivan
ID: 41838261
Hi,

did you configure Outlook Anywhere, and what names did you enter in Outlook when configuring it?
Where is autodiscover record pointing?

Regards,
Ivan.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:totallypatrick
ID: 41838280
Hi all, I have a wildcard cert with autodiscover.domain.com in it. This issue only happens to Outlook 2016 MAC client. PC version works perfectly fine. Apparently PC and MAC version works differently. Refer to link 2. Exact error I encountered in link 1.

https://support.microsoft.com/en-sg/kb/3066652 
https://technet.microsoft.com/en-us/library/jj984202(v=office.14).aspx

My website domain.com is pointing to another IP address. How do I make "domain.com/autodiscover" point to my Exchange server? Is this the way to do it? I'm not sure.
0
 

Author Comment

by:totallypatrick
ID: 41838286
Doing a nslookup -q=a test.yourdomain.com returns the IP address of my Exchange server which is correct. However on MAC,  Outlook 2016 shows the IP address of my web server (hosting my company website) which is totally out.
0
 
LVL 17

Expert Comment

by:Ivan
ID: 41838287
Hi,

if you have wildcard certificate for your domain, then you can simple install that cert on your domain.com website, and that will fix it.

When it comes to autodiscover, first thing that Outlook is going to connect is going to be domain.com, and not autodiscover.domain.com. That is why you have a problem.

As you said, PC Outlook works differently, so they don't have this problem, after profile has been configured.

Regards,
Ivan.
1
 

Author Comment

by:totallypatrick
ID: 41838292
Referring to the attached file, I think i'm stuck at point 2A and it throws the SSL host mismatch error. It doesn't seems to go to 2B which is autodiscover.xxx.com
Capture.JPG
0
 

Author Comment

by:totallypatrick
ID: 41838296
Hi Ivan, I'm not familiar with web hosting and I've got a 3rd party to host it for me. I can use the same exact cert I used in Exchange server? It doesn't matter if the IP for the website and Exchange server is different right?
0
 
LVL 17

Accepted Solution

by:
Ivan earned 2000 total points
ID: 41838329
Hi,

if you have wildcard cert, which covers all possible names for your domain, then you can use it.
IP address does not matter, yes.

One thing, do you use SSL on that website? If you have it enabled, but you don't actually use it for anything, then you can also simple disable it. That way, when Outlook try to connects to domain.com website, it will see that SSL is disabled, and will automatically redirect to next address is process, which is autodiscover.domain.com.
That way, Outlook is still going to point to your Exchange, and nothing would have to be done.

Regards,
Ivan.
0
 

Author Comment

by:totallypatrick
ID: 41838348
Thank you Ivan. Let me give it a shot tom. I'll try to input the cert tom but disable SSL.
0
 
LVL 17

Expert Comment

by:Ivan
ID: 41838369
If you disable SSL, then you don't need cert. That is if/ if solution. No need to do both things.
0
 

Author Comment

by:totallypatrick
ID: 41838388
Just discovered something. A SSL cert has indeed been applied by my web hosting company. If I go to https://119.31.237.67 there is indeed a cert applied as you can see and the certificate name matches what my Outlook shows. What should I do?
0
 
LVL 17

Expert Comment

by:Ivan
ID: 41838421
Your domain is parked at 3rd party hosting, which is using it's on certificate. I am not sure if you can enter your certificate on it. Do you have some cpanel or some access to it, so that you try import or to try to disable SSl...
0
 

Author Comment

by:totallypatrick
ID: 41838441
Yup i have access to Cpanel. I can try to disable SSL tom
0
 

Author Comment

by:totallypatrick
ID: 41839490
Hi Ivan, you're right. I don't have the ability to disable SSL on the 3rd party hosting but nevertheless thanks a lot for your explanation.
0
 

Author Closing Comment

by:totallypatrick
ID: 41839492
Right answer
0

Featured Post

Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question