none
autodiscovery - changing port for OWA

    Question

  • I have a single public address.

    Port 443 is mapped on the firewall to the direct access server. Port 8443 is mapped to the exchange client access server.  

    The direct access server presents a certificate with the subject name of "connect.domain.com". I have created a new website on the exchange client access server on port 8443 and have created the exchange virtual directories on the new website. The exchange services present a certificate with the subject name of "mail.domain.com"

    I have created a SRV record of _autodiscover._tcp.domain.com in the external DNS. the SRV record resolves to a host called mail.domain.com and port 8443. mail.domain.com resolves to the external address of the firewall. I do not have a autodiscover.domain.com record in the external DNS.

    My expectation is that Outlook anywhere clients should connect to my firewall at port 8443 because of the SRV record. However I can see it connecting at port 443, as the client warns about a name mismatch because it receives the direct access certificate and does not connect.

    Is the port number from the SRV record ignored by clients?

    thanks,

    -Ravi

    Wednesday, September 11, 2013 6:15 PM

All replies

  • Hi,

    I think it’s a Outlook display issue since the port is NATed.

    Thanks,

    If you have feedback for TechNet Subscriber Support, contact tnsfl@microsoft.com


    Simon Wu
    TechNet Community Support

    Friday, September 13, 2013 8:32 AM
  • can you explain a little more? I am actually receiving the certificate configured at port 443 in Outlook, even though I have configured the _autodiscovery SRV address to specify port 8443.

    thanks,

    -Ravi

    Friday, September 13, 2013 2:14 PM
  • Hi Ravi,

    Can you use Network Monitor to capture the connection session and see whether the ports are used correctly:

    http://www.microsoft.com/en-in/download/details.aspx?id=4865

    Thanks,

    If you have feedback for TechNet Subscriber Support, contact tnsfl@microsoft.com


    Simon Wu
    TechNet Community Support

    Tuesday, September 17, 2013 6:01 PM