Recently we had renewed our webmail certificates on digicert certificate authority and had to use the SHA2 SSL certificates as the older SHA1 version deprecated already.
The installation of the certificates was done on all required mail servers within the domain including our barracuda load balancer.
We had some warnings poping up for users within the domain before installing the new certificates because the older ones expired before we do the renewal where users at that time were not able to connect to exchange from outside after certificate expiration.
After renewal domain users restored connectivity to exchange with no warning coming up within office and are able to access Webmail using OWA from outside without a problem.
But these domain users are now unable to connect to exchange from outside due to some reason which we are investigating and I came across several articles which I wanted to consult experts about regarding SHA2 side effects on relation and connectivity to back-end.
Enabling TLS 1.2 on IIS 7.5 for 256-bit cipher strength: http://jackstromberg.com/2013/09/enabling-tls-1-2-on-iis-7-5-for-256-bit-cipher-strength/
Appreciate any help on the matter.