Microsoft Exchange and Active Directory Blog
In a previous article, I already described how the free Let's Encrypt certificates can be requested and assigned to Exchange services using PowerShell. I am currently working on automating the entire process from requesting the Let's Encrypt certificate to automatic renewal using PowerShell. The goal is a fire-and-forget script for the Exchange certificates, let's ... Read more
I am currently receiving a lot of inquiries about ActiveSync and Apple devices. Apple devices do not want to establish an ActiveSync connection with Exchange using the integrated Mail app. So if you find your environment in the following description, you will run into the problem described: Apple devices with the integrated mail app (iPhone, iPad) The SSL certificate comes from StartCom / StartSSL ... Read more
The DNS names of the configured URLs of the virtual Exchange directories are relevant for the SSL certificate. The corresponding DNS names must be available on the certificate as SAN (Subject Alternate Name). This small script lists all configured DNS names of the Exchange 2016 servers. This allows the certificate to be requested and issued accordingly. $AllExchangeServers = Get-ExchangeServer foreach ($ExchangeServer in $AllExchangeServers) ... Read more
Foreword The certification authority Let's Encrypt has been offering free certificates for some time now. I wrote an article on this topic back in December 2015, but the Windows client wasn't working reliably at the time, so I had to take a detour via a Linux computer. A little over a year has now passed and I have ... Read more
This is the last part of the series of articles "Configuring certificates" for Exchange Server 2013 and Exchange 2016. The previous parts can be found here: Configuring certificates Part 1 Configuring certificates Part 2 Note: This part also builds on Part 1 and Part 2, so please be sure to read the first two parts first. This part is about ... Read more
This is the second part of the article series. As already announced in the first part, this article deals with the configuration. Important: Be sure to read the first part first, as this article builds directly on it. Exchange 2016 configuration The first part ended with the considerations for the URLs to be used to access Exchange. For the sake of simplicity ... Read more
I now receive emails every day with questions about certificates and/or Outlook Anywhere. The questions about Outlook Anywhere are usually also related to the certificates. In most cases, the emails end with a sentence similar to this one: Certificates are a red rag for me! The sentence comes from a mail that I received today ... Read more
Certificate warnings are annoying, regardless of the program. In this case, a remote desktop connection (RDP) warns of an invalid certificate. Everyone is probably familiar with this message: This is a "normal" Windows server, i.e. not a remote desktop host (terminal server), RDP is only activated here for administration purposes. In the standard configuration, Windows uses ... Read more
In addition to Let's Encrypt, StartSSL also offers free SAN certificates for up to 5 domains with a term of 1 year for free. The certificates are supported by all common browsers and devices. The advantage of StartSSL over Let's Encrypt is that the certificates are valid for 1 year, compared to only 3 months with Let's Encrypt. The certificates must be ... Read more
Here is another interesting Exchange 2013 problem that occurred after someone had "cleaned up". Error situation Outlook no longer connects, access to Exchange Shell and Exchange Administrative Center was also no longer possible. The error occurred after the Exchange Server had a completely wrong date due to a faulty configuration. Even after the problem ... Read more
