Exchange 2019 on-premises auto-discovery issue with IOS Mail app. Mail app discovers wrong SSL

Brian

5/22/23, 8:29 PM

So I have my Exchange 2019 hosted on-premise with a purchased SSL for mail.example.com. Outlook and OWA work great with auto-discovery both onsite or offsite. When I add an email account into my iPhone mail app that is on my Exchange server i get an error "Cannot Verify Server Identity" This clearly is happening because the IOS app is loading a certificate from my hosting company for my website avsimplified.com However my exchange server is on my own server at mail.avsimplified.com

So avsimplified.com is at 66.96.147.96 public IP address and mail.avsimplified.com is at 173.218.1.192 public IP address.

I have added to my Godaddy DNS the following:

srv _autodiscover._tcp.mail 0 0 443 mail.avsimplified.com. 600 seconds

I am at a loss how to get the IOS app to pull the correct AutoDiscover and therefor the correct SSL certificate. Any help would be greatly appreciated.

Microsoft Remote Connectivity Analyzer results are as follows:

http://avsimplified.com/RCATestResult.html

AutoDiscover XML Tool Log

http://avsimplified.com/AutoDiscoverXMLTool-Results.txt

0 + 0

domain-name-system

exchange

ssl

iphone

autodiscover

joeqwerty

5/22/23, 8:45 PM

Give us the actual domain name so we can... you know... actually check it for ourselves.

Brian

5/22/23, 11:24 PM

Done. Was not sure if it would be needed... Thanks for looking at this.

Score:0

Server

CrookedJ

5/24/23, 3:06 PM

This is due to how iOS processes autodiscover. It tries to hit https://<yourdomain>.com/microsoft-server-activesync first; which in your case has a certificate for *.<differentdomain>.com that doesn't match. I'd recommend working with your web host to redirect that to mail.<yourdomain>.com or disabling it entirely.

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Exchange 2019 on-premises auto-discovery issue with IOS Mail app. Mail app discovers wrong SSL

TH: ปัญหาการค้นหาอัตโนมัติภายในองค์กรของ Exchange 2019 ด้วยแอป IOS Mail แอป Mail ค้นพบ SSL ที่ไม่ถูกต้อง

RO: Problemă de descoperire automată la nivel local cu Exchange 2019 cu aplicația IOS Mail. Aplicația de e-mail descoperă SSL greșit

RU: Локальная проблема автоматического обнаружения Exchange 2019 с почтовым приложением IOS. Почтовое приложение обнаруживает неправильный SSL

VI: Sự cố tự động phát hiện tại chỗ Exchange 2019 với ứng dụng Thư iOS. Ứng dụng thư phát hiện sai SSL

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.