Plattform:
2 Node Multi Role Exchange 2013 Cluster with Kemp Load Balancer for CAS Access.
Some Windows XP Clients with Outlook 2007 SP3 and latest Updates (Exchange 2013 compatible)
Problem:
Windows XP does not support UC/SAN Certifcate Name entries, therefore NTLM Authentication for Outlook Anywhere does not work, if the Certificate Common Name does not contain the internal Server FQDN. Only Basic Authentication will work. This is not an option, because Win8 will ask for Credential everytime you start Outlook.
The CertPrincipalName in OutlookProvider reflects the Certificate Common Name wich is webmail.company.local.This is pointed to the Kemp LoadBalancer where Layer 7 and SSL Acceleration is configured for the Exchange 2013 Web Services.
Question:
Is there a hotfix for Windows XP available that supports the Subject Alternate Name entries in a Certificate?
Thank you
Sascha