Solved

Exchange 2007 Outlook Client "Security Alert"

Posted on 2010-08-24
3
427 Views
Last Modified: 2012-06-27
I have recently added a new exchange server in our domain for SCR. I have noticed that when we log into outlook we get a Security Alert from the new SCR Target. (which is passive).

So the new SCR target has a root cert that comes by default on exchange. It is not trusted because IIS has not been touched on the passive server.

My Questions:

1 - why is this happening? I understand getting the SecAlrt but not from the passive server. It would at least come with the active server.
2 - Our Valid Cert is working properly. I just searched the past 24hrs and there is no log stating any issues with Cert validity.

It gives me an option to Install Certificate.

Any help suggestions would be most appreciates.

Thanks - SJMP
0
Comment
Question by:sparkis
  • 2
3 Comments
 
LVL 8

Accepted Solution

by:
SGrossmann earned 500 total points
ID: 33510493
When you configure the SCR you should make sure that in case of an failover everything works without any problems for the users, therfore you should install a valid ssl certificate to this server. If you're running and internal CA within you Windows Environment it should not be a problem to publish this certificate.I'm not sure why your outlook clients connect to this server could you check you autodiscover settings if the new system is added as possible cas-server.
0
 

Author Comment

by:sparkis
ID: 33627765
Can I disable this feature CAS on the SCR target without causing any problems?
I dont want to install the SSL cert while this is still a passive server.
0
 

Author Closing Comment

by:sparkis
ID: 33793115
need to ask a new question and it wont allow me. so I am closing this
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now