Microsoft Exchange server: which SSL to use? What about autodiscover. subdomain?

Symptom: internal access is working properly, but accessing with Outlook from remote locations is showing an error that autodiscover.yourdomain.com is not part of the SSL certificate.

Solution:

Don't use a single domain certificate, but a wildcard or mutli-domain certificate that not only includes "mail.company.com" but also "autodiscover.company.com".

If you have already ordered a single domain certificate, you can use the 14 days money-back-guarantee and replace it with the proper one.


Multi-Domain certificate:

As with a single domain certificate, create the CSR for "mail.company.com". When placing the CSR inside "My InterSSL", add "autodiscover.company.com" as a SAN Slot.


Wildcard certificate:
Simply create a CSR for *.company.com.  The autodiscover. domain will automatically be covered by the wildcard certificate.



White Paper: Understanding the Exchange 2010 Autodiscover Service

https://technet.microsoft.com/en-us/library/jj591328(v=exchg.141).aspx

Was this answer helpful?

 Print this Article

Also Read

Can i obtain a SSL certificate for a server with dynamic IP / DNS / DynDNS address? What about synology.me, myqnapcloud.com, dyndns.org subdomains?

Yes, it is possible to obtain a SSL certificate for dynamic IP based servers. For mail...

Windows Azure Website: Create CSR & Install SSL Certificate

DigiCert is offering detailed instructions for CSR creation and SSL installation for Windows...

Sectigo / Comodo Code Signing stuck - Using correct Firefox version to make it work

Code Signing certificates are requiring special browser features that not all web browsers are...

Mobile / Android Devices are flagging the SSL certificate to be untrusted or insecure. - What can i do to fix this problem?

Android devices not recognizing your freshly installed SSL typically means you are missing the...

S/MIME Zertifikate Bundesagentur für Arbeit (Deutschland) bzw. Arbeitsagentur für verschlüsselte Email Kommunikation (Emailverschlüsselung, Verschlüsselung)

Die von InterSSL gelieferten CPAC Basic S/MIME Zertifikate werden von der Bundesagentur für...