Once the cert has been installed you will need to enable the cert. Can be done EMC.
When i go into Outlook i get the following error:
This is because i’m connecting to services using the NetBIOS name of mbx1 which does not match the name on the certificate. If i run Get-ClientAccessServer -Identity Server | fl i’ll see that the AutoDiscoverServiceInternalUri says https://mail.server.com/Autodiscover/Autodiscover.xml, this does not match the certificate. I can also check the other services and see that i get the same results for OAB, EWS, Outlook Anywhere (OA) and Exchange Active Sync (EAS). So i need to update all theses internal url’s to match the name on the cert.
- Set-ClientAccessServer –AutodiscoverServiceInternalURI https://remote.server.com/autodiscover/autodiscover.xml
- Set-WebServicesVirtualDirectory -Identity "server\EWS (Default Web Site)" –InternalUrl https://remote.server.com/EWS/Exchange.asmx
- Set-OABVirtualDirectory -Identity “server\OAB (Default Web Site)” -InternalURL https://remote.server.com/OA
- Enable-OutlookAnywhere -Server mbx1 -ExternalHostname “remote.server.com” -ClientAuthenticationMethod “NTLM”
- Set-ActiveSyncVirtualDirectory -Identity “server\Microsoft-Server-ActiveSync (Default Web Site)” -InternalURL https://remote.server.com/Microsoft-Server-Activesync
Sometimes you have mail.doman.com in the DNS (internal or external). If the namr not in use, please delete the record,