Solved

Outlook Web Access Certificate Error

Posted on 2007-04-05
7
278 Views
Last Modified: 2008-02-01
We have a Windows 2003 server which has Exchange, IIS, Outlook Web Access, now all work but the fact that when going to the Outlook Web Access. If i go to https://mail.ourdomain.com/exchange I get a Certificate Error, if I ignore the warning i get the Outlook Web Access login form and everything works.

No some bright spark installed a faulty home grown certificate before I started and we are now planning to buy a VeriSign certificate.

I have tried the test install from VeriSign and still having issues.

I removed the previous certificate and installed the new one using IIS, not sure if i have done this right though as I am getting the following error:

VeriSign Trial Secure Server Test Root CA
  VeriSign Trial Secure Server Test CA
    mail.ourdomain.com

I get the following message for VeriSign Trial Secure Server Test Root CA:

    This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.

The VeriSign Trial Secure Server Test CA and mail.ourdomain.com both say:

    This certificate is OK.

Could someone please shed some light on this and let me know what I am missing or doing wrong or possibly how to remove the certificate again properly and reinstall this VeriSign Test CA correctly.

Any help would be much appreciated, NewAS.

0
Comment
Question by:NewAS
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 18

Expert Comment

by:amaheshwari
ID: 18856334
Check this:

How do I configure OWA to use SSL?
http://www.petri.co.il/configure_ssl_on_owa.htm

Or

Securing Your Outlook Web Access 2000 Implementation Using SSL
http://www.msexchange.org/tutorials/MF004.html
0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 18856611
I am pretty sure that the root for the Verisign test certificates is not in the browser, so you will get this error message.
If you want a trial certificate that will not generate the warning, then get one from RapidSSL (Geotrust). Their certificates are cheaper than Verisign as well.

Simon.
0
 

Author Comment

by:NewAS
ID: 19335921
We went for a Thwate SSL Web Certificate tagged to our domain and it worked straight away. It also sorted out our PDA's as well.

Regards, NewAS.
0
Creating Instructional Tutorials  

For Any Use & On Any Platform

Contextual Guidance at the moment of need helps your employees/users adopt software o& achieve even the most complex tasks instantly. Boost knowledge retention, software adoption & employee engagement with easy solution.

 
LVL 18

Expert Comment

by:amaheshwari
ID: 19336132
So the issue of your's is resolved with the help of Thwate SSL Web Certificate?
0
 

Author Comment

by:NewAS
ID: 19336272
It is in deed, thank you for asking.
0
 
LVL 1

Expert Comment

by:Computer101
ID: 20526442
Forced accept.

Computer101
EE Admin
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question