?
Solved

Outlook Web Acess

Posted on 2006-11-15
6
Medium Priority
?
185 Views
Last Modified: 2008-02-01
Hi,

I have OWA setup using SSL cert, CA used is Windows built in CA.

Any computer that joins the domain has the cert in its Trusted Root Certification Authorities and works fine.

However, there are remote users who are not members of the domain and who want to use this, aswell as RPC over https and Windows mobile.

When they browse to https://remote.domain.com/exchange the following happens:

1.) A message comes up saying "revocation information for security cert for this site is not available
2.) The standard warning comes up telling me that the cert is from an authority I have not chosen to trust.

I then import the cert into Trusted Root Certification Authorities and proceed.

However, when I browse to the website again, I get the same message(s) again, as if cert was not imported correctly.

I need to use a cert for Windows Mobile etc.

Any ideas?
0
Comment
Question by:darraghcoffey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 104

Assisted Solution

by:Sembee
Sembee earned 375 total points
ID: 17947184
Why don't you just buy a certificate?
US$20 from GoDaddy, $70 from RapidSSL. If you want to use SSL with your Windows mobile devices and you have a .com/.net/.org domain then use the certificates from GoDaddy. They are trusted by the device natively without any changes.

Home grown certificates should only be used in a lab or where you have control over every device that is accessing the site. With an Internet exposed OWA you fail on the second test.

Simon.
0
 
LVL 3

Expert Comment

by:aplona
ID: 17948111
If the windows mobile you are using is 2003 then you can use a program by microsoft called disablecertscheck.  You have to run this on the server and this way windows mobile will bypass cert checking.  However, if you have the latest windows mobile, 5.0.
Then you must buy a cert from a registrar.
0
 
LVL 39

Accepted Solution

by:
redseatechnologies earned 375 total points
ID: 17950812
Hi darraghcoffey,

You should really be buying a certificate,

If you want to install that home grown cert, install it like so; Click View Certificate > Install Certificate > Next > Browse > Show Physical Stores > Trusted Root Certification Authorities > Local Computer > OK > Next > Finish

This won't help with the Windows Mobiles, but will for RPC/HTTP.  Again, do yourself a favour and buy a certificate.

-red
0
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 

Author Comment

by:darraghcoffey
ID: 18001874
haven't had a chance to get back to this yet, but will probably end up buying a cert.

will update when I've got the problem sorted

Thanks for all your suggestions so far
0
 

Author Comment

by:darraghcoffey
ID: 18011570
Thanks Guys,

Split the points evenly

Thought I'd try to be smart and "beat the system" but ended up getting a Rapid SSL cert in the end
0
 
LVL 39

Expert Comment

by:redseatechnologies
ID: 18012206
>>Thought I'd try to be smart and "beat the system" but ended up getting a Rapid SSL cert in the end

That is not always an easy thing to do, don't feel bad that it didn't work out :)

Buying a cert will make life so much easier anyway

Thanks for closing!

-red
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
In-place Upgrading Dirsync to Azure AD Connect
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
Suggested Courses

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question