Exchange hosts more than 250 third-level domains and many are used as primary
email addresses in departments. With the most recent Office releases (Windows
and Mac) as well as many mobile apps, Microsoft and third-party's are relying
on an Exchange component, the Autodiscover service, to configure client
profiles and devices.
describes the Autodiscover service as:
"The Exchange Autodiscover service provides an
easy way for your client application to configure itself with minimal user
input. Most users know their email address and password, and with those two
pieces of information, you can retrieve all the other details you need to get
up and running."
Clients locate the
Autodiscover service by using DNS queries against different names in the
clients primary SMTP address. When a user enters their email address as say -- email@example.com --
the client will try to locate an Autodiscover service by first connecting to http://department.ufl.edu/Autodiscover/Autodiscover.svc and
failing that will next try http://autodiscover.department.ufl.edu/Autodiscover/Autodiscover.svc.
When the client locates one of these services it will authenticate with the
users credentials and the Exchange server will return an xml document to the
client with server URLs for the various Exchange components. The client will
use that document to configure itself and is fully configured with only having
to had provided their email address and password.
Implementing a Autodiscover record for your
UFIT provides a
redirect service that departments can use to implement Autodiscover for their
third-level domains. To use this service you will need to create a CNAME record
for each domain you have in UF Exchange. If UFIT hosts your DNS this can be
requested via myIT. The format of the record should be:
autodiscover.dept.ufl.edu pointing to autodiscover-redirect.mail.ufl.edu or autodiscover.dept.ufl.edu IN CNAME autodiscover-redirect.mail.ufl.edu
Here is an example
of a correctly configured record.
oulman$ nslookup autodiscover.ifas.ufl.edu
canonical name = autodiscover-redirect.mail.ufl.edu.
Q: Why are my
domain-joined clients not impacted if I don't have an autodiscover DNS name
A: Domain joined
clients utilize Active Directory records to locate Autodiscover services
regardless of primary SMTP address. Only non-domain joined computers and mobile
devices are typically impacted.
Q: My users are
receiving a pop-up that a server "https://mail.ufl.edu/Autodiscover/Autodiscover.svc is
trying to configure their client. Why is this happening?
autodiscover-redirect.mail.ufl.edu service redirects clients from http to https
at a different server (mail.ufl.edu). If you manage your non-domain-joined
clients you can suppress this warning via Group Policy.