When I add serveral users to an IM and try to IM them I get a 3098 error. I can however IM users one at a time. This is all internal use at this point. No remote users.
I saw a thread on here that said:
In the Certficates Snap-in for local computer open the Root Certificate located in the Trusted Roots Certification store. Click on the Details Tab and then click the Edit Properties.
Here you will see Certificate Purposes. If Enable only the following purposes is checked you need to ensure Client Authentication is check here or Enable all purposes for this certificate since the certificate issue to the Pool from this CA chain includes Client Authentication in it's EKU.
I checked the cert for the pool and "Enable all purposes for this certificate" is checked, but in the cert detials under EKU I only see "Server Authentication". Is this an issue? FYI, this is an interanl cert issued by our internal CA Server.
My Environment Details:
All OCS servers are running Windows server 2008 Ent R2 x64
OCS Version: OCS 2007 Server EE R2
2 FE servers behind a Coyote load balancer