Exchange Server - EX 2010 with Non-UCC SSL

Asked By Craig

19-Nov-09 09:31 AM

We would like to setup a single Exchange 2010 server, and support
Activesync/OWA.

I have been reading around and found that a UCC SSL is not an option because
apparently some Palms and Windows Mobile 6 devices do not support UCC SSL's.

This being so, is it possible to set this up with a Standard SSL?  I have read
that this should be possible after creating Internal and External DNS SRV
records.
Can someone confirm?

We will be migrating from a Ex 2003 environment.

Thanks for all your help
Craig

Exchange Setup Discussions

IIS
(1)

SMTP
(1)

Activesync
(1)

Windows
(1)

Palms
(1)

Cert
(1)

COM
(1)

UCC
(1)

Mark Arnold [MVP] replied to Craig

20-Nov-09 08:25 AM

Windows Mobile 6 will support them, at the very worst you will use the
certificate name that is most generic right as the first name rather
than additional names.

But yes, a plain old certificate works perfectly fine.

Craig replied to Mark Arnold [MVP]

20-Nov-09 09:31 AM

I forgot to mention that our internal domain is a .local.

This being the case, can I just go to Server Configuration and assign the
.COM SSL  to (i assume) the IIS and SMTP services?

Thanks!
Craig

Oliver Moazzezi [MVP] replied to Craig

20-Nov-09 02:28 PM

Craig,

For it to work like you have seen on older handheld devices ensure the
OWA/activesync url is the common name of the cert and not one of the Subject
Alternative Names.

And in regards to your other question, yes you can.

Oliver

New SSL Cert - Exchange 2007 Exchange Server

Exchange 2007 Sp1 single server. I imported a new SSL cert for OWA, outlook anywhere, activesync. . . I enabled the cert for SMTP, IIS - is there anything else I need to enable for ActiveSync? Thanks Exchange Admin Discussions IIS (1) SSL (1) Microsoft Exchange (1) MYDOMAIN (1) CN (1) MobileClientCertificateProvisioningEnabled (1) RemoteDocumentsActionForUnknownServers (1) RemoteDocumentsInternalDomainSuffixList 1) I think NO. No, covered by "IIS." Any idea how to address this: test-activesyncconnectivity - Result FAILURE [System.Net.WebException]: The underlying this my problem? [PS] C: \ Documents and Settings \ Administrator.MYDOMAIN> Get-ActiveSyncVirtualDirectory -Identity ft-Server-ActiveSync (Default Web Site)" | fl MobileClientFlags : BadItemReportingEnabled, RemoteDocumentsActionForUnknownServers MobileClientCertificateProvisioningEnabled : False BadItemReportingEnabled : True MobileClientCertificateAuthorityURL : MobileClientCertTemplateName : ActiveSyncServer : https: / / mail. MYDOMAIN.com / RemoteDocumentsActionForUnknownServers : Block RemoteDocumentsAllowedServers : {} RemoteDocumentsBlockedServers : {} RemoteDocumentsInternalDomainSuffixList : {} MetabasePath : IIS: / / gbmail02. MYDOMAIN.com / W3SVC / 1 / ROOT / Microsoft-Server-Ac tiveSync BasicAuthEnabled : True WindowsAuthEnabled : True CompressionEnabled

3 Problems in exchange (2 related to bouncebacks, 1 to activesync). Exchange Server

3 Problems in exchange (2 related to bouncebacks, 1 to activesync). Exchange Server Problem 1: Lots of "SMTP Server Remote Queue Length Alert" emails from mail server. I see this almost daily regarding large numbers of messages in the send queue. I believe my default SMTP virtual server's settings do not allow open relay (only server IP allowed for relay known good addresses on this server from the outside (say from an @cox.net on smtp.west.cox.net or from @gmail.com through gmail). Server is on no known blacklists problem. No settings seem out of place from what I can tell. Problem 3: Exchange Activesync gets 850100014 errors: I get these errors consistently on a TMobile Wing phone setup to access this server. I've rebuilt the exchange virtual directories in IIS using the metabase edit method, OWA works fine, but I seem to still get errors servers without problem. Exchange Admin Discussions Microsoft Exchange (1) Active Directory (1) Virtual Server (1) IIS (1) SMTP (1) TMobile (1) Protocols (1) Windows (1) Get a good and reliable spam filtering solution

OWA Stop without error of Exchange 2003 Exchange Server

has no particular errors or warning and every 2 / 3 weeks OWA stop to work: IIS return a page not found to all users. Exchange still works with outlook, pop, SMTP, except push mail sometime, IIS seems to work fine and I have NO ERROR in every log. . . I can restart all services but IIS doesn't serve page to OWA users. Seems that IIS can't access xchange but. . why?????? Exchange Miscellaneous Discussions Outlook (1) IIS (1) PocketPC (1) SMTP (1) ActiveSync (1) ActiveSyn (1) Xchange (1) Db579b16f005d411a61e0020afa13e80 (1) You'll need to check the IIS Log

SMTP TLS Exchange Server

SMTP TLS Exchange Server Hey everyone. I have a funny feeling that my smtp service on Exchange 2007 is not doing TLS. I first noticed this when I was to my exchange server. It keeps failing on making an encrypted connection to the exchange smtp service (imaps works fine). When I telnet into port 25 on the Exchange server, and DSN 250 AUTH NTLM Should I be seeing something regarding TLS ? Thanks! Exchange Admin Discussions IIS (1) SMTP (1) ExchangeCertificate (1) AuthMechanism (1) London.ia.localMicrosoft (1) Identity (1) If that is all certificates (including the certificate that was created when we installed exchange) as being enabled for smtp. Any ideas? ." . . t my n to see e OU = 3DDomain In addition, I am receiving name of the site. I know this is a problem, however would this be breaking smtp tls on this server? You show two certificates enabled for SMTP. I am not sure which one is actually being used but you should review what