Wednesday , October 23 2019

The name on the security certificate is invalid – Exchange 2013

Domain joined machines and outlook pop up shows up with this error

“The name on the security certificate is invalid or does not match the name of the site”

image

Coz the internal server name is not listed in my cert as recommended

image

Now Outlook get this pop up while retrieving the Autodiscover information

you got to change this entry to avoid this . so that it will start looking at mail.testcareexchange.biz

Run

Get-ClientAccessServer | fl Identity,*uri*

image

Now run to set to the entry which is on the cert.

Set-ClientAccessServer -Identity EXCH2013 -AutoDiscoverServiceInternalUri https://mail.testcareexchange.biz/Autodiscover/Autodiscover.xml

image

 

Do an IISreset – if changes doesnt take effect.

About Satheshwaran Manoharan

Satheshwaran Manoharan is an Microsoft Office Server and Services MVP , Publisher of Azure365pro.com. Specialized in Office365 / Microsoft Exchange / Virtualization , Sathesh is an Messaging Expert supporting/Designing/Deploying many medium size businesses to large enterprises when it comes to Corporate messaging and Virtualization Infrastructure

Check Also

Save Public IPs using F5 LTM Policies

F5 has different modules and one of them is LTM – Local Traffic Manager . ...

5 comments

  1. Dear Sathis,

    As mentioned in the above blog , i was also facing the same issue, i was followed your documention as mentioned above and made changes but still the certificate error poping up this is happening internally .
    Kindly Advice
    Pradeep.K.M

  2. Only a quarter of the fix and IISReset does nothing, to actually fix it, enter these THREE commands: NOTE: replace SRVNAME with your servers internal NETBIOS name and YOURURL with the external url that matches you cert (without the )

    Set-ClientAccessServer -Identity SVRNAME -AutoDiscoverServiceInternalUri https://YOURURL/Autodiscover/Autodiscover.xml

    Set-WebServicesVirtualDirectory -Identity “SVRNAME\EWS (Default Web Site)” -InternalUrl https://YOURURL/ews/exchange.asmx

    Set-OABVirtualDirectory -Identity “SVRNAME\oab (Default Web Site)” -InternalUrl https://YOURURL/oab

    Open IIS
    Goto Application Pools
    Right click MSExchangeAutodiscoverAppPool then click Recycle

    Your welcome

    • i followed all the steps but still not working any ideas

      • Hello guys,

        I have ran all the above three command plus the one shown bellow and it has solved my problem. Make sure to change the Thumbprint with the one shown on your valid certificate.

        Enable-ExchangeCertificate -Thumbprint F633DA9BFB45D902C0B0CE8A8D4F2EA045D95744 -Services “SMTP
        , IIS”

        Kida regards

        Ery-Edson

Leave a Reply

Your email address will not be published.