I have a Windows SBS 2003 setup for OWA. I have created a certificate on it.
I have an A record for mail.mydomainname.com
When I use Windows XP and IE7, I am able to install the certifictate by doing a http://mail.mydomainname.com/certsrv
I am not able to use IE7 with Windows Vista without getting a "certificate is invalid" message.
I do not want to have to purchase a third party certificate, if at all possible.