Hi, I amimplementing Outlook Anywhere and Autodiscover features. Initially I plan to use SAN(Subject-Alternate-name) certificate. internal active directory domain: abc.com external domain: xyz.com My problem is that I do not have control of abc.com external domain and the certificate issuer refused to issue me the certificate. What other option I have? Thanks.

Hi, For Outlook Anywhere, you can configure the external host name by using name.xyz.com. For Autodiscover, for external access, the Outlook connects to Autodiscover Virtual directory through following URL: https://domain.com/autodiscover/autodiscover.xml https://autodiscover.domain.com/autodiscover/autodiscover.xml The domain name is based on SMTP email address you provided when create user profile. Therefore, if your email address is xyz.com, I think the certificate with only xyz.com is also available. For internal access, the Outlook gets the Autodiscover Virtual directory URL through SCP record. You need to change the URL configured in the SCP record from abc to xyz. In addition, you also need to change the internal URL for OAB and EWS virtual directory by using following command: Set-oabvirtualdirectory Set-webservicesvirutldirctory For the Autodiscover URL, you need to use Adsiedit.msc tool to change it. For more information regarding the certificate, please refer to following articles: White Paper: Exchange 2007 Autodiscover Service http://technet.microsoft.com/en-us/library/bb332063.aspx Certificate Use in Exchange Server 2007 http://technet.microsoft.com/en-us/library/bb851505.aspx Mike