I have been trying to get Outlook web access working for 1 person who wants to use their PDA to access email outside the network. I had port 443 opened for OWA, and it works OK through a browser (it gives cert warnings from a self-made cert obviously). The PDA cannot access it though because of the self-signed cert (getting error 0x80072f17, which is a cert error). Anyway, we do not host a domain at this site. Our Active Directory domain is hr.local, and all the SSL places want to "validate" your top level domain. How can I get around this problem. I was just going to disable SSL access and use port 80, but I know it is not in the best practices to do such a thing.