I have
Exchange 2010 and just renewed my SSL certificate on the server. As you may be
aware that .local name is no longer valid/accepted for new certificate issue. <o:p></o:p>
https://www.digicert.com/ssl-support/redirect-internal-exchange-san-names.htm<o:p></o:p>
I have
change the SAN names on the certificate, meaning I have just removed the server.domain.local
name and rest is the same. Certificate has been installed and in the beginning
we receive certificate mismatch security alert error message but that has been
sorted now. BUT remote users cannot connect to exchange server over VPN. They
are keep being prompted for username and password. <o:p></o:p>
I have
tried this
https://www.networking4all.com/en/support/ssl+certificates/manuals/microsoft/exchange+2010/modify+.local/<o:p></o:p>
Tool from
Digicert https://www.digicert.com/internal-domain-name-tool.htm
Internal user are working fine without any problem but external user have
problem connecting. <o:p></o:p>
I have
tried the Authentication method to Basic/Negotiate unchecking the box "Only Connect to proxy server that have this principle
name in their certificate". I have deleted any cached username password,
nothing is working. Try to add new account over VPN and no luck. <o:p></o:p>
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.Or please vote as helpful.