Autodiscover and SRV records

Odeslat dotaz

13. února 2012 20:16

0

Hi,

I have multiple primary email aliases in my org..i.e. domain.ie, domain.co.uk, domain.net ..

To save on money on having to add several autodiscover.domain.x to my cert can I get around this ny creating SRV records point to a valid name on the cert on port 443, or will I still get an cert error on the Outlook 2010 client?
Celtic
- Reagovat
- Citovat

Všechny reakce

13. února 2012 20:46

0

Yes, you can use SRV records for autodiscover: http://support.microsoft.com/kb/940881

Steve
- Reagovat
- Citovat
13. února 2012 20:50

0

Hi Steve,

I know you can create SRV records, but that wasnt my question. My question is if I create an SRV record for each of the domains and point it to a name that is valid on the cert will the client get a cert errors.

i.e. I have a name of webmail.domain.ie on the cert. I create an autodiscover SRV revord for domain.co.uk pointing to webmail.domain.ie port 443. will the client get a cert error?
Celtic
- Reagovat
- Citovat
13. února 2012 21:14

0
Apologies, I misread.

You would need a UC certificate with all autodiscover names on it to use SRV records. You can use a single certificate along with the redirection solution instead: http://technet.microsoft.com/en-us/library/ff923256.aspx
- Označen jako odpověď Castinlu 21. února 2012 4:28
- Reagovat
- Citovat
14. února 2012 13:24

0

I agree, if you are for ex. a hosting provider, or using a lot of domains then you can go for this method

The client's will receive a notification the first time and should press that they allow this certificate/name and then it's fine

You can check this link as well, just to compare so that you won't miss any detail, it's for Exchange 2007 but it works the same way

http://technet.microsoft.com/en-us/library/cc501409.aspx

Jonas Andersson | Microsoft Community Contributor Award 2011 | MCITP: EMA 2007/2010 | Blog: http://www.testlabs.se/blog | Follow me on twitter: jonand82
- Reagovat
- Citovat
15. února 2012 2:30

0
hi,

If you want to use SRV to config autodiscover,you should remove the A/C record of autodiscover on both internal and external DNS server.If you not do this,you will receive a warning.Whether you srv configured correctly.

After you remove the record about autodiscover,then you can use a Self-signed certificate to match your SRV record,you'd better set the SRV record match the OWA URL and the ip address is your cas server address.Then you will not receive a warning when outlook use srv to find autodiscover.

See this link:http://support.microsoft.com/kb/940881

hope can help you

thanks,

CastinLu

TechNet Community Support
- Upravený Castinlu 15. února 2012 6:52
- Označen jako odpověď Castinlu 21. února 2012 4:27
- Reagovat
- Citovat
15. února 2012 11:45

0
Of course that you can create 3 diferent SRV records in 3 different DNS zones that leads to single name, and you will need only one certificate for this name.

Example.

A Record
```
<Name of the cert that you have>  - <ip of your CAS>
```
SRV Recored in each zone that look likes that
```
Service: _autodiscover
Protocol: _tcp
Port Number: 443
Host: <name of the cert that you have>
```
- Reagovat
- Citovat

Autodiscover and SRV records

Všechny reakce

Produkty

Materiály

Řešení

Aktualizace

Zkušební verze

Související weby

Školení

Certifikace

Další materiály

Podpora produktů

Odkazy na podporu