Solved

Outlook Web Acess

Posted on 2006-11-15
6
181 Views
Last Modified: 2008-02-01
Hi,

I have OWA setup using SSL cert, CA used is Windows built in CA.

Any computer that joins the domain has the cert in its Trusted Root Certification Authorities and works fine.

However, there are remote users who are not members of the domain and who want to use this, aswell as RPC over https and Windows mobile.

When they browse to https://remote.domain.com/exchange the following happens:

1.) A message comes up saying "revocation information for security cert for this site is not available
2.) The standard warning comes up telling me that the cert is from an authority I have not chosen to trust.

I then import the cert into Trusted Root Certification Authorities and proceed.

However, when I browse to the website again, I get the same message(s) again, as if cert was not imported correctly.

I need to use a cert for Windows Mobile etc.

Any ideas?
0
Comment
Question by:darraghcoffey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 104

Assisted Solution

by:Sembee
Sembee earned 125 total points
ID: 17947184
Why don't you just buy a certificate?
US$20 from GoDaddy, $70 from RapidSSL. If you want to use SSL with your Windows mobile devices and you have a .com/.net/.org domain then use the certificates from GoDaddy. They are trusted by the device natively without any changes.

Home grown certificates should only be used in a lab or where you have control over every device that is accessing the site. With an Internet exposed OWA you fail on the second test.

Simon.
0
 
LVL 3

Expert Comment

by:aplona
ID: 17948111
If the windows mobile you are using is 2003 then you can use a program by microsoft called disablecertscheck.  You have to run this on the server and this way windows mobile will bypass cert checking.  However, if you have the latest windows mobile, 5.0.
Then you must buy a cert from a registrar.
0
 
LVL 39

Accepted Solution

by:
redseatechnologies earned 125 total points
ID: 17950812
Hi darraghcoffey,

You should really be buying a certificate,

If you want to install that home grown cert, install it like so; Click View Certificate > Install Certificate > Next > Browse > Show Physical Stores > Trusted Root Certification Authorities > Local Computer > OK > Next > Finish

This won't help with the Windows Mobiles, but will for RPC/HTTP.  Again, do yourself a favour and buy a certificate.

-red
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:darraghcoffey
ID: 18001874
haven't had a chance to get back to this yet, but will probably end up buying a cert.

will update when I've got the problem sorted

Thanks for all your suggestions so far
0
 

Author Comment

by:darraghcoffey
ID: 18011570
Thanks Guys,

Split the points evenly

Thought I'd try to be smart and "beat the system" but ended up getting a Rapid SSL cert in the end
0
 
LVL 39

Expert Comment

by:redseatechnologies
ID: 18012206
>>Thought I'd try to be smart and "beat the system" but ended up getting a Rapid SSL cert in the end

That is not always an easy thing to do, don't feel bad that it didn't work out :)

Buying a cert will make life so much easier anyway

Thanks for closing!

-red
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question