certificate request?
Greetings!
We have 1 forest, 2 domains.
Domain1: company.local
Domain2: company.sth.local
We have 2 exchange servers 2007 SP3. One in first domain and one in second domain.
If a user from the first domain is connected inside our company LAN when he opens Outlook 2010 a pop up message appears security alert for trusting the certificate of the second exchange server. How should I get rid of it?bostjanc
June 30th, 2011 7:56am
Let me also mention another thing, that we had a problem with proxy server settings on primary domain not being correct.
I have launched this command on both of exchange 2007 servers:
Set-OutlookProvider EXPRT -Server $null
Proxy settings seems to be fine for now, but I think that when 2nd exchange server is rebooted, when he is back online he somehow force his settings to users in first exchange in first domain. I don't know if that makes any sense.
bostjanc
Free Windows Admin Tool Kit Click here and download it now
June 30th, 2011 8:01am
Greetings!
We have 1 forest, 2 domains.
Domain1: company.local
Domain2: company.sth.local
We have 2 exchange servers 2007 SP3. One in first domain and one in second domain.
If a user from the first domain is connected inside our company LAN when he opens Outlook 2010 a pop up message appears security alert for trusting the certificate of the second exchange server. How should I get rid of it?
bostjanc
Hi Bostjanc
Tow resolution to get rid of the certificate alert:
·
One is that need to install a trusted certificate in both the two Exchange servers (so that the certificate is trusted by Outlook client);
·
The second one is just building up two AD sites to separate your Exchange servers, or setting up the site affinity (so that Outlook located in company.local
will not connect to Exchange server located in company.sth.local).
I need to explain that, Outlook 2010 connects to Autodiscover service via LDAP query to Active Directory looking for all available SCP objects; when
the results are returned, Outlook sorts and enumerates the returned results based on the client's Active Directory site. In another word, all CAS servers are available for Outlook 2010 clients based on the AD sites. That’s why your Outlook located in
company.local domain connects to your second Exchange server located in company.sth.local domain.
For more information, see How the Autodiscover Service Works with Clients at
http://technet.microsoft.com/en-us/library/bb332063(EXCHG.80).aspx#HowTheADSWorks and How to Configure the Autodiscover Service to Use Site Affinity
http://technet.microsoft.com/en-us/library/aa998575(EXCHG.80).aspx.
Best regards,
Fiona Liao
Email:
v-fiolia@microsoft.com
IBS TechNet Forum Exchange Support Team
Email: v-yuliao@microsoft.com Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
July 3rd, 2011 11:24pm
Let me also mention another thing, that we had a problem with proxy server settings on primary domain not being correct.
I have launched this command on both of exchange 2007 servers:
Set-OutlookProvider EXPRT -Server $null
Proxy settings seems to be fine for now, but I think that when 2nd exchange server is rebooted, when he is back online he somehow force his settings to users in first exchange in first domain. I don't know if that makes any sense.
bostjanc
I'd suggest you submit a new thread for this new questions, it is free for you.
your understanding would be appreciated.
Thanks,
-FionaEmail: v-yuliao@microsoft.com Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
July 3rd, 2011 11:25pm