I assume you have a 2-tier internal PKI that signed your Exchange cert - a root and intermediary. Ensure both are uploaded to the trusted certs in the SEG section in the UAG.
View solution in original post
