I had previously just set all my web services and autodiscover internal urls to point to our external domain name of wan1.domain.com which is also what the certificate points to (go daddy single address ssl).. This was working fine.. I then decided it would be better practice to change those to internal addresses like https://exchange02/ etc.. since we are behind the firewall internally.. However.. in doing so, naturally i get the security alert in outlook saying the cert doesnt match the name (wan1 doesnt match exchange02).. I followed these steps in doing the set commands for all the urls before http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/configuring-exchange-server-2007-web-services-urls.htmlI did find this article outlining possible ways to fix this:www.sembee.co.uk/archive/2007/01/21/34.aspx*It basically indicated wild card certificates arent even an option, as it would break our mobile activesync? Is this still true? (Go daddy now offers a reasonable multi name certificate for much less than the wildcard ones)...**I dont really like the idea of creating multiple web sites either, as i have run into owa issues in the past and would rather not tinker there. We also dont have extra public ips to go around..To me, it seems that switching the internal url back to wan1.domain.com is the simplest solution.. but i would like to find a way to go to truely internal names for the internal urls.. Is there a way i'm not seeing? Or should i just leave the internal names.. external addresses? Our network solutions dns hosting also doesnt offer srv records, though i'm not sure how that would help if they did. We are running Exchange 2007 sp1. Thanks in advance

I've got wildcards working; not supported, but working. Windows Mobile 6 is fine with them :-), and I used teh office 07 resource kit to supress SSL warnings in outlook.

knightly wrote: I've got wildcards working; not supported, but working. Windows Mobile 6 is fine with them :-), and I used teh office 07 resource kit to supress SSL warnings in outlook. DId you use a GPO policy to suppress these warning messages? If so.. i cant find the GPO.. nor can i find the actual "2007 resource kit download link".. though of course i do have the latest adm files from the one Microsoft site.. Thanks

I used the offfice 07 customization files (if memory serves), but i think there is an adm that lets you suppress security warnings. I ended up setting the internalURI as referenced here as well, so now even clean/no gpo/no mst file/ outlook installs won't error http://support.microsoft.com/?kbid=940726

knightly wrote: I used the offfice 07 customization files (if memory serves), but i think there is an adm that lets you suppress security warnings. I ended up setting the internalURI as referenced here as well, so now even clean/no gpo/no mst file/ outlook installs won't error http://support.microsoft.com/?kbid=940726 Here is the link to customization i found.. but unless i'm just not seeing it.. i dont see how you would eliminate the prompts for security.. unless you turn down security perhaps.. to low? But this doesnt seem like a good idea to me? http://technet.microsoft.com/en-us/library/cc179097.aspx#Office_security_settings