Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Exchange 2013 - Cannot get seprate certs to work at the same time

Posted on 2016-11-11
3
Medium Priority
?
51 Views
Last Modified: 2016-11-30
Hi!

I have a client who has purchased 2 basic certs for his Exchange 2013 server.  One from GoDaddy mail.mydomain..com and one from Network Solutions, Autodiscover.mydomainm.com.  The DNS for autodiscover is properly setup as an SRV record.  Both certs are installed.  But when the client logs into Exchange from Outlook he gets the cert warning on Autodiscover.  I checked and no services are assigned to the autodiscover cert.  When I assign IIS to it IIS is disabled on the mail cert and nothing works.

Any ideas?

Thanks!
0
Comment
Question by:MOBlew
  • 2
3 Comments
 
LVL 16

Assisted Solution

by:Jason Crawford
Jason Crawford earned 1000 total points (awarded by participants)
ID: 41884242
You don't technically need to cover autodiscover.domain.com in your cert if you use SRV records.  Just the mail.domain.com sub-domain will suffice.  Remove the cert for autodiscover and only add/assign services to the mail.domain.com cert.
0
 
LVL 17

Accepted Solution

by:
Todd Nelson earned 1000 total points (awarded by participants)
ID: 41884302
Most of the services (with the exception of SMTP) in Exchange cannot be assigned to more than one certificate.

I would advise that they either get a UC/SAN cert that includes both names or change the DNS records for autodiscover to point to mail.mydomain.com.
0
 
LVL 17

Expert Comment

by:Todd Nelson
ID: 41907009
Sufficient information provided for solution.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article describes Top 9 Exchange troubleshooting utilities that every Exchange Administrator should know. Most of the utilities are available free of cost. List of tools that I am going to explain in this article are:   Microsoft Remote Con…
A few solutions to a problem some of us have been having when trying to add Hostgator email accounts to Outlook 2016 (will probably work with Outlook 2013 as well).
how to add IIS SMTP to handle application/Scanner relays into office 365.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
Suggested Courses
Course of the Month11 days, 3 hours left to enroll

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question