13. února 2012 20:16
I have multiple primary email aliases in my org..i.e. domain.ie, domain.co.uk, domain.net ..
To save on money on having to add several autodiscover.domain.x to my cert can I get around this ny creating SRV records point to a valid name on the cert on port 443, or will I still get an cert error on the Outlook 2010 client?
13. února 2012 20:46
Yes, you can use SRV records for autodiscover: http://support.microsoft.com/kb/940881
13. února 2012 20:50
I know you can create SRV records, but that wasnt my question. My question is if I create an SRV record for each of the domains and point it to a name that is valid on the cert will the client get a cert errors.
i.e. I have a name of webmail.domain.ie on the cert. I create an autodiscover SRV revord for domain.co.uk pointing to webmail.domain.ie port 443. will the client get a cert error?
13. února 2012 21:14
Apologies, I misread.
You would need a UC certificate with all autodiscover names on it to use SRV records. You can use a single certificate along with the redirection solution instead: http://technet.microsoft.com/en-us/library/ff923256.aspx
- Označen jako odpověď Castinlu 21. února 2012 4:28
14. února 2012 13:24
I agree, if you are for ex. a hosting provider, or using a lot of domains then you can go for this method
The client's will receive a notification the first time and should press that they allow this certificate/name and then it's fine
You can check this link as well, just to compare so that you won't miss any detail, it's for Exchange 2007 but it works the same way
15. února 2012 2:30
If you want to use SRV to config autodiscover,you should remove the A/C record of autodiscover on both internal and external DNS server.If you not do this,you will receive a warning.Whether you srv configured correctly.
After you remove the record about autodiscover,then you can use a Self-signed certificate to match your SRV record,you'd better set the SRV record match the OWA URL and the ip address is your cas server address.Then you will not receive a warning when outlook use srv to find autodiscover.
See this link:http://support.microsoft.com/kb/940881
hope can help you
TechNet Community Support
15. února 2012 11:45
Of course that you can create 3 diferent SRV records in 3 different DNS zones that leads to single name, and you will need only one certificate for this name.
<Name of the cert that you have> - <ip of your CAS>
SRV Recored in each zone that look likes that
Service: _autodiscover Protocol: _tcp Port Number: 443 Host: <name of the cert that you have>