Outlook Web Access Certificate Error

We have a Windows 2003 server which has Exchange, IIS, Outlook Web Access, now all work but the fact that when going to the Outlook Web Access. If i go to https://mail.ourdomain.com/exchange I get a Certificate Error, if I ignore the warning i get the Outlook Web Access login form and everything works.

No some bright spark installed a faulty home grown certificate before I started and we are now planning to buy a VeriSign certificate.

I have tried the test install from VeriSign and still having issues.

I removed the previous certificate and installed the new one using IIS, not sure if i have done this right though as I am getting the following error:

VeriSign Trial Secure Server Test Root CA
  VeriSign Trial Secure Server Test CA
    mail.ourdomain.com

I get the following message for VeriSign Trial Secure Server Test Root CA:

    This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.

The VeriSign Trial Secure Server Test CA and mail.ourdomain.com both say:

    This certificate is OK.

Could someone please shed some light on this and let me know what I am missing or doing wrong or possibly how to remove the certificate again properly and reinstall this VeriSign Test CA correctly.

Any help would be much appreciated, NewAS.

NewASAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

amaheshwariCommented:
Check this:

How do I configure OWA to use SSL?
http://www.petri.co.il/configure_ssl_on_owa.htm

Or

Securing Your Outlook Web Access 2000 Implementation Using SSL
http://www.msexchange.org/tutorials/MF004.html
0
SembeeCommented:
I am pretty sure that the root for the Verisign test certificates is not in the browser, so you will get this error message.
If you want a trial certificate that will not generate the warning, then get one from RapidSSL (Geotrust). Their certificates are cheaper than Verisign as well.

Simon.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
NewASAuthor Commented:
We went for a Thwate SSL Web Certificate tagged to our domain and it worked straight away. It also sorted out our PDA's as well.

Regards, NewAS.
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

amaheshwariCommented:
So the issue of your's is resolved with the help of Thwate SSL Web Certificate?
0
NewASAuthor Commented:
It is in deed, thank you for asking.
0
Computer101Commented:
Forced accept.

Computer101
EE Admin
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.