OWA behind firewall and server certificate 1

[bustamove]

Hi,

we have this problem due to the anti-phishing features come with the new broswers.

internal server name: MAILEX01.company.com.
the outside DNS alias name is webmail.company.com

When we installed a certificate for https OWA, it is issued to the internal name, but when we use PIX firewall to NAT it outside using the webmail.company.com, it used to give a warning saying the certificate name is mismatched, however, the new browser setting by default blocks it!

Is there an easy way to fix this problem? Many thanks

 

[reynolwi]

you need to use the name the certificate was issued to. That is what is probably causing your problems.

Wm. Reynolds
RRWDS | TxPSS

http://www.rrwds.com

http://www.txpubsafety.com

- - - - - - - - - - - - -
Network Error:
Hit any user to continue

 

[bustamove]

OK. I realize this. But inside the network, nothing is referenced to webmail.company.com, when I install(re-install) the certificate on the exchange box, how to I issue it to webmail.company.com? it automatically issued to MAILEX01.company.com

 

[58sniper]

No - you just didn't change the info when you created the CSR. The certificate needs to match the public name that will be used, such as webmail.company.com

Create another CSR with the correct info, then install the corrected certificate.

Securing Outlook Web Access using SSL

http://www.msexchange.org/tutorials/MF004.html

Pat Richard, MCSE MCSA:Messaging CNA
Microsoft Exchange MVP
Want to know how email works? Read for yourself -

http://www.ietf.org/rfc/rfc2821.txt

 

[bustamove]

thanks Pat. this is the exact information i am looking for.
i think i clicked too fast, didn't see the place where you can change "common name" for the web certificate. it is working now.