Open issue: RPC OVER HTTPS (cert problem)

Home Forums Messaging Software Exchange 2000 / 2003 Open issue: RPC OVER HTTPS (cert problem)

Viewing 1 post (of 1 total)
  • Author
    Posts
  • Avatar
    kopal
    Member
    #113438

    hi,

    I’ve posted this issue before but now I have more information.

    i have two questions:

    1)

    I have one exch 2003(without sp1) server which is also the dc (2003 server+sp1).
    client: xp+sp1 outlook 2003+ sp1
    I didn’t install sp1 for exchange because last time I installed the server didn’t came up from restart. Furthermore the rpc over http doesn’t require sp1 for exch. (but I will try to install it again next time when I will have a rollback option).

    I followed the articles:

    Configure SSL on OWA
    Configure RPC over HTTP/S on a Single Server
    Configure SSL on Your Website with IIS
    Configure Outlook 2003 to use RPC over HTTP/S
    Testing RPC over HTTP/S Connection

    I’ve already implemented ssl with owa ( i used 3rd party ca(startcom)
    but which is unknown to the clients, until i had it myself, i didn’t
    use my own ca because of security matters)

    and

    Configured Exchange to use RPC over HTTP/S.

    Configured the RPC virtual directory in Internet Information Services.

    Configured the RPC proxy server to use specific ports.
    (did all the changes necessary to exch without sp1)

    Configured the client computers to use RPC over HTTP/S

    I’m trying to access from the lan
    with
    outlook.exe /rpcdiag

    i see it still uses the tcp/ip
    i tried to do it by force (only caused troubles, the esm didn’t run)

    when trying to connect through wan i get the logon box(where i need to
    enter the user/password)

    and i get a message that the exchange server is unavailable(while i
    know it is up)

    kill me i dono i followed all the steps carefully.

    2. one more problem is when i’m trying to connect simply by outlook
    from the wan(without using ssl and all that stuff) to my exch server
    i’m entering my exch server(external fqdn) on the profile
    configuration and it doesn’t work , only ip but when i use owa from
    wan there is no problem in resolving names(dns seems to work fine)
    furthermore, when i complete the profile wizard i’m trying to connect
    and i get the user/password box(because im entering from a computer
    which is not part of the domain) and everytime i insert the
    cardentials, the box jump back like if there is a problem with the
    input.
    I’m sure my user / password is correct

    when i enter the server to iis admin->default web site ->properties ,
    i view the cert and see yellow exclamation mark on the certificate. it
    said “windows does not have enough information to verify this
    certificate” , and when i enter with the client to owa using ssl ,
    although i use the startcom cool link in order to install the cert to
    the client , i continue to get the yellow green message (as you call
    it) and the error is “The name on the security certificate Is invalid
    or does not match the name of the site” . and thats after i’ve
    imported the cert to the trusted root both on the server and the
    client. further more i used mail.domain.com in the common name so
    whats the problem.??? how can i fix this issue? do i need to use my
    own ca???

    thanks

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.