Exchange 2007 Mutual Autentication

Submitted by miked on Thu, 10/16/2008 - 08:37

I ran into an issue where Outlook 2007 on Windows XP on Exchange 2007 wouldn't autoconfigure and specifically didn't work with Outlook Anywhere. In my case, the mutual authenticaiton piece was failing. Thanks to this site for helping my diagnose the issue. The problem is with SAN certs. For mutual authentication to work with Outlook Anywhere, the FQDN for the external hostname used must match the Issued To field of the cert and doesn't work if you use an external hostname specified in the Subject Alternative Field.

In my case, I disabled mutual authentication by issuing a Set-OutlookProvider EXPR -Server $null -CertPrincipalName none command. The main symptom of this problem was the client would stick on the authentication piece of the Autoconfigure process. The user would experience endless authentication (password) prompts. I hope this helps!

Add new comment

Certs on exchange 2007

Submitted by Anonymous on Thu, 12/11/2008 - 07:09.

I had similar issues with the Exchange 2007 certificates. I found a cheap workaround using DNS and a regular cert. http://everydaysysadmins.blogspot.com/2008/09/outlook-anywhere-with-exch...

Funny how I picked the same name for my blog that you did. My bad.

reply

Tags in Tags

Active Directory email exchange exchange 2007 lefthand networks linux MySQL powershell python ubuntu VMware windows

more tags

From the looks of the new @twitter client for Blackberry, I feel bad for the other developers of BB twitter clients.

21 weeks 5 days ago
Jon Gosselin's war room: "OK, new show pitches aren't working out, ideas?" "Have Jon sue for custody." "Bingo! Run with that!"

21 weeks 5 days ago

Everydaysysadmin.com

Exchange 2007 Mutual Autentication

Certs on exchange 2007

Tags in Tags