Link to home
Start Free TrialLog in
Avatar of WORKS2011
WORKS2011Flag for United States of America

asked on

New Exchange 2016 Installation All Devices Connect Fine Except Androids

Removed a SBS2011 and migrated to a Server 2016 with 1st VM (PDC) and 2nd VM(Exchange 2016). Rekeyed the cert and everything works fine except Android devices. Get this error.
User generated image
Allot of information on the internet but haven't seen anything that's helped resolve the issue.

Microsoft updating the TLS to 1.2, but providers not having done this, as we are all having this problem with mobile phones and tablets using Outlook.
Some information about this on the internet but the links don't really give any resolution.
Avatar of J0rtIT
J0rtIT
Flag of Venezuela, Bolivarian Republic of image

Well if the problem is on the certificate, then the problem is simple, he has to get a new certificate that allows TLS 1.2 and is correctly signed.
At least that you want to implement Certificate authentication with these devices.

https://support.kaspersky.com/13694
Avatar of WORKS2011

ASKER

Jose, certs always seem to get the best of me. Turns out the local computers Outlook connects but this cert error pops up.
User generated image
This doesn't have anything to do with remote though, correct?

I added all the names to the certs but maybe forgot this one.
The GoDaddy cert I didn't add exchange.domain.local, should I have added this to the cert?

Certs on the server
Cert I created from GoDaddy
User generated imageBuilt in cert
User generated image
You can't add a .local to a GoDaddy cert. Support was discontinued for that years ago. What services are connected to your GoDaddy cert?
Hi Jeff, IIS and SMTP
How many Exchange servers do you have?
1
I think that the problem is that you haven configured correctly the certs on the exchange server
...and how do you recommend I configure them?

I added a forward lookup zone in my DNS for the .com domain and added host A records for www, remote, and autodiscovery. Testing now.
ASKER CERTIFIED SOLUTION
Avatar of J0rtIT
J0rtIT
Flag of Venezuela, Bolivarian Republic of image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Turned out an internal URL in the virtual directories was misconfigured. Corrected this and only other issue was external website didn't pull up on the LAN so I added a host A record with external IP. All is working now.
I think I finally have certs figured out. As you can see in a previous post regarding certs and exchange I seem to run into bottlenecks. Turned out an internal URL in the virtual directories was misconfigured. Corrected this and only other issue was external website didn't pull up on the LAN so I added a host A record with external IP. All is working now.