Back

Outlook Profile Autodiscover and SCP for Office 365 Migrations

When you install the Client Access server role on a computer running Exchange 2010 a default virtual directory named Autodiscover is created under th...

2 min read
Published on Oct 7, 2011
Outlook Profile Autodiscover and SCP for Office 365 Migrations

When you install the Client Access server role on a computer running Exchange 2010, a default virtual directory named Autodiscover is created under the default Web site in Internet Information Services (IIS). This virtual directory handles Autodiscover service requests from Outlook 2007 or Outlook 2010 clients and supported mobile phones under the following circumstances:

  • When a new user account is configured or updated
  • When an Outlook client periodically checks for changes to the Exchange Web Services URLs
  • When underlying network connection changes occur in your Exchange messaging environment

Additionally, a new Active Directory object named the service connection point (SCP) is created on the server where you install the Client Access server role. The SCP object contains the authoritative list of Autodiscover service URLs for the forest. You can use the Set-ClientAccessServer cmdlet to update the SCP object. For more information, see Set-ClientAccessServer. For more information about SCP objects, see Publishing with Service Connection Points.

The following figure shows how a client connects to a Client Access server the first time from inside the internal network. For external access, or using DNS, the client locates the Autodiscover service on the Internet by using the primary SMTP domain address from the user’s e-mail address.

The Autodiscover service process for internal access The Autodiscover service process for internal access

If the SCP is not available, the client looks for a valid SSL certificate typically a CNAME record for autodiscover.outlook.com for Office 365  

The Autodiscover service process for external access The Autodiscover service process for external access

To Disable SCP, on a forest that is migrating to hosted exchange or Office 365, and you’re NOT using the Microsoft Online Migrations Tool(web based Office 365 tool), you may need to disable the SCP in your Active Directory by running the following command in the Echange Server Management Shell:

Set-ClientAccessServer -Identity “SERVERNAME” -AutoDiscoverServiceInternalUri $NULL

If you have multiple Exchange servers, You may need to run this replacing SERVERNAME with all the Exchange servers in the directory. If you don’t have access to the Exchange server, and it was not uninstalled properly, you can delete the SCP entries using ADSIEdit in the following container: CN=Autodiscover,CN=Microsoft Exchange,CN=Services, [Configuration Naming Context].

This post has matured and its content may no longer be relevant beyond historical reference. To see the most current information on a given topic, click on the associated category or tag.

Related Posts

Key Features and Benefits of Azure Backup

Overview of Azure Backup: Features and Benefits

Explore the core features and advantages of Azure Backup, including built-in security, scalability, and compliance for cloud-based data protection.

Oct 6, 2025
6 min read
NIST 800-53 vs. NIST 800-171: Key Differences and Why They Matter

NIST 800-53 vs. NIST 800-171: What’s the Difference?

Understand the key differences and importance of NIST 800-53 and NIST 800-171, how they apply to agencies and contractors, and which framework your organization needs for compliance.

Oct 6, 2025
5 min read
Tenant-to-Tenant Migration for CMMC Compliance

How to Perform a Tenant-to-Tenant Migration for CMMC Compliance

Planning a tenant-to-tenant migration for CMMC compliance? Learn best practices, tool options, and common pitfalls when moving data between tenants under CMMC.

Oct 6, 2025
7 min read
Critical Data Backup in Azure | Identify & Protect What Matters

Identifying Critical Data and Applications for Backup in Azure

Learn how to identify and prioritize your critical data and applications for backup in Azure to reduce risk, ensure business continuity, and meet compliance requirements.

Oct 3, 2025
5 min read
Microsoft 365 Backup Compliance | Key Risks & Best Practices

Compliance Considerations When Backing Up Microsoft 365 Data

Ensure your Microsoft 365 backups meet compliance requirements for CMMC, NIST 800-171, and other regulations. Learn key considerations to avoid violations.

Oct 3, 2025
6 min read
Azure Backup Needs Assessment | Plan Your Cloud Data Protection

Assessing Your Organization's Backup Needs for Azure Workloads

Learn how to assess your backup needs for Azure workloads, from compliance and recovery objectives to choosing the right tools for data protection and resilience.

Sep 26, 2025
6 min read

Ready to Secure and Defend Your Data
So Your Business Can Thrive?

Fill out the form to see how we can protect your data and help your business grow.

Loading...
Secure. Defend. Thrive.

Let's start a conversation

Discover more about Agile IT's range of services by reaching out.

Don’t want to wait for us to get back to you?

Schedule a Free Consultation

Location

Agile IT Headquarters
4660 La Jolla Village Drive #100
San Diego, CA 92122