When installing a new SSL certificate you may find that you need to change the URLs used by Exchange as you can no longer get SSL certificates with non-internet FQDNs. E.g. You can’t use exch2010.mycompany.local as .local is not an internet domain. You will need to configure your Exchange server to use an FQDN – e.g. mail.contoso.com internally. This article explains how to change the URLs used by Exchange 2010.
Note that you will need the relevant DNS entries setup for this to work. You may need a “split brain” setup – i.e. where autodiscover.mycompany.local resolves to the internal IP of your exchange server. This is outside of the scope of this article. Also outside is assigning services to your new certificate.
Change URLs in EMC
The External URLs to change are:-
- https://mail.contso.com/owa (Outlook Web App)
- https://mail.contso.com/ecp (Exchange Control Panel)
- https://mail.contso.com/Microsoft-Server-ActiveSync (ActiveSync)
- https://mail.contso.com/OAB (Offline Address Book)
Open the EMC and navigate to the below.
Double click on each tab and change the URL used.
Change URLs in Powershell
The two URLs to change are:-
- https://autodiscover.contoso.com (Autodiscover)
- https://mail.contso.com/ews/exchange.asmx (Exchange Web Services, Availability, Out of Office)
Open Powershell (run as administrator) and enter the below changing the FQDN:-
Get-ClientAccessServer | Set-ClientAccessServer -AutoDiscoverServiceInternalUri:https://mail.contso.com/Autodiscover/Autodiscover.xml
Get-WebServicesVirtualDirectory | Set-WebServicesVirtualDirectory -InternalUrl ‘https://mail.contso.com/ews/exchange.asmx’
I would recommend running an IISRESET.