ME020620 - PRB: How to configure MailEnable to cater for Microsoft Outlook autodiscover requirements


SUMMARY

This article provides information on how to configure MailEnable to cater for Microsoft Outlook autodiscover requirements

INFORMATION

When Microsoft Outlook tries to auto discover during the account setup process it will try to connect to a special URL, or uses a special DNS query (SRV record).

An ordered list of DNS records and URL's can be found below:

  1.  Autodiscover to https://exampledomain.com/Autodiscover/Autodiscover.xml. The exampledomain.com is the email domain part of the email address used in account settings.
  2.  Autodiscover to https://autodiscover.exampledomain.com/Autodiscover/Autodiscover.xml. Autodiscover performs the following redirect check: GET http://autodiscover.exampledomain.com/Autodiscover/Autodiscover.xml The exampledomain.com is the email domain part of the email address used in account settings.
  3. Autodiscover DNS SRV lookup: Outlook will perform a DNS lookup for the SRV record. Example: _autodiscover._tcp.exampledomain.com If the SRV record exists for the domain it will return the host name of the server: I.e.: "mail.exampledomain.com".
  4. Autodiscover to https://mail.exampledomain.com/autodiscover/autodiscover.xml.

Microsoft Outlook uses https to access the autodiscover service when connecting to an EAS server. Therefore a valid and trusted SSL certificate is required.

While Outlook will still be able to auto discover if the certificate is not trusted the end user will need to trust the certificate and therefore the Outlook client will always prompt when the client is opened and contacts the server for the first time.

CONFIGURATION

Autodiscover DNS records:

  1. Create a CNAME record in your local DNS server under the domain that will be used for autodiscover (or via your hosting provider hosting the DNS server). I.e.: autodiscover.exampledomain.com
  2. Create an SRV record within your local DNS server for the domain
  3. Obtain an SSL certificate for the server/domain. MailEnable recommends obtaining a wildcard SSL certificate also named Unified communication certificate so that it can cater for all names of the domain. I.e.: mail.exampledomain.com and autodiscover.exampledomain.com

Adding the SSL certificate under the website servicing the MailEnable EAS service and host header binding:

  1. Open the Microsoft Internet Information Services
  2. Expand the folder tree and click on the root website that is servicing the MailEnable EAS service
  3. In the "Actions" pane click on "Bindings" and then on the "Add" button.
  4. Select HTTPS under the "type" selection and then select the IP the domain is bound to.
  5. Under the SSL certificate select the certificate that has been imported for EAS and autodiscover and then click ok
  6. Click Add again and select HTTP as the type of binding and then select the IP that is bound to CNAME created in DNS. I.e.: autodiscover.exampledomain.com
  7. Click Ok.

Adding the MailEnable autodiscover service under the website servicing EAS:

  1. Open the MailEnable ActiveSync management utility.
  2. Navigate to the "IIS Integration" tab.
  3. Locate the SSL website and click to highlight the site.
  4. Click the button for "Install AutoDiscover" to install the autodiscover service under the website.

TROUBLESHOOTING

The best way to test auto discover is to use the Microsoft Exchange test connectivity website located here:

https://testconnectivity.microsoft.com/

MailEnable also provides a tool for testing auto discover located here:

http://www.mailenable.com/tools/

REFERENCES

MailEnable Exchange ActiveSync Deployment guide: http://www.mailenable.com/activesync/EAS_Deployment_Guide.pdf

 



Product:MailEnable (All Versions)
Category:Environment
Module:Other
Keywords:EAS Outlook activesync Microsoft SRV
Class:PRB: Product Problem or Issue
Revised:Wednesday, May 4, 2016
Author:
Publisher:MailEnable