I've done. That is my success story.
1. I've found some MSFT guy mentioned DWORD
isableRpcTcpFallback=1 registry
value in Outlook's RPC registry key. This value prevents RPC over TCP using.
2. I changed mail server name in mail profile from external name to internal
name. So, mail server is internalname.domain, prcproxy server is
externalname.domain. I didn't use mutual authentication. I didn't add
anything to client's HOSTS file to resolve internalname.domain. I used
splitted domain configuration to resolve externalname.domain. If you cannot,
just use HOSTS file. I used company's CA certificate on web-server and I
installed it on client computer.
As I mentioned above, I've performed 833401 completely, and after I set
DisableRpcTcpFallback=1 and changed mail server name in mail profile,
Outlook has connected successfully. I spent a lot of time and I was
rewarded.
I've checked out that configuration on a single server (E2K3SP1+DC/GC+
RpcProxy+ISA2KSP2, SSL listener, /rpc/* is published) and with two boxes
(one box was W2K3+E2K3SP1+DC/GC+RpcProxy behind the second box, second one
was W2KSP4+ISA2KSP2).
Thanks all guys that helped me, I'm happy.
Best regards,
Vit Knyshevich.