Hi All,I have a Exchange 2007 Consolidated Topology and Internal Enterprise Root CA.I had a Single Ceritificate CN=mail.acme.comin Exchange 2007 and it works fine (Owa, Outlook Anywhere and ActiveSync).After I request and create a SAN certificate for autodiscover servicelike this:CN=mail.acme.comSAN=SERV01.acme.corpSAN=autodiscover.acme.comWhen I imported and Enabled san certificate for IIS and SMTP service there is a problem with this certificate, because from a client computer that had Root CA ceritificate that access to OWA it show this:There is a problem with this website's security certificateIt's like if i dont have the Root CA Certificate.Anye Ideas?Thanks.

Hi Jose, Please send the complete error information into the forum for further analyze. There is a problem with this website's security certificate Based on my research, please try to check the following settings: 1. On your Exchange server, run the following command and post the result into the forum: Get-exchangecertificate | fl * 2. When you receive certificate error, click Continue to this website (not recommended). In the address bar, click Certificate Error, and then click View certificates, 3. Click General tab, ensure the name behind Issued to is identical to the address that you inputted in the address bar. 4. Click Detail tab, and then click Subject, make sure it is identical to the address that you inputted in the address bar. 5. Click Subject Alternative Name, make sure the address that you inputted in the address bar is included in the DNS name. 6. If the settings above are not correct, try to run new-exchangecertificate to generate a certificate and then import and enable the certificate, check the effect. Note: when you run new-exchangecertificate command, make sure you have included mail.acme.com,SERV01.acme.corp,autodiscover.acme.com in -domainname parameters. Also, I provide some articles to help you better understand Subject Names and Domain Names. Creating a Certificate or Certificate Request for TLS http://technet.microsoft.com/en-us/library/aa998840.aspx How to Configure SSL Certificates to Use Multiple Client Access Server Host Names http://technet.microsoft.com/en-us/library/aa995942.aspx If anything is unclear, feel free to let me know. Regards, Rock WangRock Wang MSFT