MAPI uses wrong URL

tolcheen 11 Reputation points
2022-02-22T13:50:11.507+00:00

We had a single exchange 2016 server. Our internal domain is a .local while email is a .com. We setup internal DNS with .com having the autodiscover and mail DNS. We had no issues, with the user being internal on the office network or external on the internet. We brought up a 2nd exchange server and all seemingly went well. We imported the UCC SSL certificate, applied it to the services and updated all the internal and external URLs to the same as the first server. All URLs are either autodiscover.xxxxxxxxx.com or exch.xxxxxxxxxx.com We updated DNS to use round-robin selection. The issue we have is people on the internal network, when they start Outlook, get a security prompt. The prompt is the server server2.xxxxxxxxx.local has an invalid certificate. If you look at the certificate, it is for the correct exch.xxxxxxxxxx.com I can even see in the Outlook connection status, it is reaching out for the .local server name. But the MAPI URLs are exch.xxxxxxxx.com

176814-image.png

If you accept, everything works, if you say no, it eventually fails over to the .com address.

I'm not 100% sure what Mailbox1@Piepel .com is. Mailbox1 is the name of the 1st exchange server's database. mailbox1.edb I tried searching for a mailbox1 account or mailbox but have had no luck. I can send an email to mailbox1@X .com but no idea where it went. Maybe its a public folder, which we have, but the email didn't appear there.

I want to continue with a DAG setup, but this worries me.

Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,628 questions
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 147.9K Reputation points MVP
    2022-02-22T15:57:52.513+00:00

    Can you run the Email Auto Config:
    https://support.intermedia.com/app/articles/detail/a_id/10189/type/KB

    then look at the XML and see what URLs are being returned by each directory?

    Did you ensure the AutoDiscover URI is set correctly and matched Server 1?

    Get-ClientAccessService | Format-Table Name, AutoDiscoverServiceInternalUri
    
    1 person found this answer helpful.

  2. Kael Yao-MSFT 37,646 Reputation points Microsoft Vendor
    2022-02-23T02:16:10.807+00:00

    Hi @tolcheen

    Did this issue occur after you install the second Exchange server?
    And do you see Mailbox1@keyman .com appearing in connection status on every affected client?

    Since this issue seems to only affect internal users, if they are all domain-joined, you can add the following value to registry on client device and see if it makes any difference:

    Path: HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\x.0\Outlook\AutoDiscover
    (x.0 in this registry path corresponds to the Outlook version (16.0 = Outlook 2016, 15.0 = Outlook 2013, 14.0 = Outlook 2010, 12.0 = Outlook 2007).)
    (If the Autodiscover key doesn't exist, you can manually create it.)

    Add a DWORD value named ExcludeScpLookup and set its value to 1.
    177024-62.png


    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.