I was wondering if it's possible to use a wildcard certificate (*.extcompany.com) that is different to my Internal domain name (intcompany.com) in my exchange 2010 environment. In effect it will mean my certificate does not match the FQDN of the servers.
So far I can get everything working EXCEPT Outlook Anywhere. I've done this by changing the URL's in the CAS server (EWS, OWA, EPC) to be OWA.extcompany.com.
Any help/advice will be appreciated.
Thanks
< Message edited by angcartwright -- 23.Aug.2010 4:19:27 AM >
Internally it works, externally through TMG 2010 I get - The Connection to Microsoft Exchange is unavailable etc OWA works externally - the only thing I can think is there's a problem with my certificate, hence the wildcard cert question.
These are the logs on the TMG:
When I connect I see in the logs:
Allowed Connection TMG-001-001-02 23.08.2010 09:41:09 Log type: Web Proxy (Reverse) Status: 503 Service Unavailable Rule: Outlook Anywhere Source: Internal (xx.xxx.xxx.xxx:50483) Destination: Local Host (webapp.domain.com 172.16.12.10:443) Request: RPC_OUT_DATA http://webapp.domain.com/rpc/rpcproxy.dll?webapp.domain.com:6004 Filter information: Req ID: 09f0e329; Compression: client=No, server=No, compress rate=0% decompress rate=0% ; FBA cookie: exists=no, valid=no, updated=yes, logged off=no, client type=unknown, user activity=yes Protocol: https User: (LDAP)joeb Additional information Client agent: MSRPC Object source: Internet (Source is the Internet. Object was added to the cache.) Cache info: 0x40000008 (Request includes the AUTHORIZATION header. Response should not be cached.) Processing time: 47 MIME type:
Then I get: Failed Connection Attempt TMG-001-001-02 23.08.2010 09:41:09 Log type: Web Proxy (Reverse) Status: 64 The specified network name is no longer available. Rule: Outlook Anywhere Source: Internal (xx.xxx.xxx.xxx:50482) Destination: Local Host (webapp.domain.com 172.16.12.10:443) Request: RPC_IN_DATA http://webapp.domain.com/rpc/rpcproxy.dll?webapp.domain.com:6004 Filter information: Req ID: 09f0e327; Compression: client=No, server=No, compress rate=0% decompress rate=0% ; FBA cookie: exists=no, valid=no, updated=yes, logged off=no, client type=unknown, user activity=yes Protocol: https User: (LDAP)joeb Additional information Client agent: MSRPC Object source: Internet (Source is the Internet. Object was added to the cache.) Cache info: 0x8 (Request includes the AUTHORIZATION header.) Processing time: 891 MIME type:
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Microsoft Exchange 2010] >> General >> Wildcard Certificate not the same as my Internal Domain - is it possible? 
Wildcard Certificate not the same as my Internal Domain... - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread
