Avatar of WORKS2011
WORKS2011
Flag for United States of America asked on

New Exchange 2016 Installation All Devices Connect Fine Except Androids

Removed a SBS2011 and migrated to a Server 2016 with 1st VM (PDC) and 2nd VM(Exchange 2016). Rekeyed the cert and everything works fine except Android devices. Get this error.
login error
Allot of information on the internet but haven't seen anything that's helped resolve the issue.

Microsoft updating the TLS to 1.2, but providers not having done this, as we are all having this problem with mobile phones and tablets using Outlook.
Some information about this on the internet but the links don't really give any resolution.
ExchangeOutlookAndroid

Avatar of undefined
Last Comment
WORKS2011

8/22/2022 - Mon
Jose Gabriel Ortega Castro

Well if the problem is on the certificate, then the problem is simple, he has to get a new certificate that allows TLS 1.2 and is correctly signed.
At least that you want to implement Certificate authentication with these devices.

https://support.kaspersky.com/13694
WORKS2011

ASKER
Jose, certs always seem to get the best of me. Turns out the local computers Outlook connects but this cert error pops up.
cert
This doesn't have anything to do with remote though, correct?

I added all the names to the certs but maybe forgot this one.
WORKS2011

ASKER
The GoDaddy cert I didn't add exchange.domain.local, should I have added this to the cert?

Certs on the server
Cert I created from GoDaddy
certBuilt in cert
cert3
Your help has saved me hundreds of hours of internet surfing.
fblack61
Jeff Glover

You can't add a .local to a GoDaddy cert. Support was discontinued for that years ago. What services are connected to your GoDaddy cert?
WORKS2011

ASKER
Hi Jeff, IIS and SMTP
Jeff Glover

How many Exchange servers do you have?
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
WORKS2011

ASKER
1
Jose Gabriel Ortega Castro

I think that the problem is that you haven configured correctly the certs on the exchange server
WORKS2011

ASKER
...and how do you recommend I configure them?

I added a forward lookup zone in my DNS for the .com domain and added host A records for www, remote, and autodiscovery. Testing now.
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
ASKER CERTIFIED SOLUTION
Jose Gabriel Ortega Castro

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
WORKS2011

ASKER
Turned out an internal URL in the virtual directories was misconfigured. Corrected this and only other issue was external website didn't pull up on the LAN so I added a host A record with external IP. All is working now.
WORKS2011

ASKER
I think I finally have certs figured out. As you can see in a previous post regarding certs and exchange I seem to run into bottlenecks. Turned out an internal URL in the virtual directories was misconfigured. Corrected this and only other issue was external website didn't pull up on the LAN so I added a host A record with external IP. All is working now.