ormerodrutter
asked on
Certificate warning message when using OWA
Dear experts,
I am experiencing a rather strange behavior with certificate warning in OWA. And I think it is a problem with IE8.
We are using SBS2003 with self assigned certificate. I haven't export/import the self-assigned cert to user laptop so when users open OWA they all see the Certificate Warning message at the beginning. This is fine we have no problem with that, and we have no intention changing it.
However, upon setting up a new laptop an user report a rather strange behaviour, that when he uses OWA he sees this message at the beginning, which is fine. But then he sees this message EVERYTIME he opens an email, and that is not right and is very annoying.
It is still working the user only has to click continue..... but it is annoying. Is it some settings in IE that can be adjusted to aviod such? This problem only seems to happen to user with IE8 installed. IE7 or Firefox users are OK.
Thanks.
I am experiencing a rather strange behavior with certificate warning in OWA. And I think it is a problem with IE8.
We are using SBS2003 with self assigned certificate. I haven't export/import the self-assigned cert to user laptop so when users open OWA they all see the Certificate Warning message at the beginning. This is fine we have no problem with that, and we have no intention changing it.
However, upon setting up a new laptop an user report a rather strange behaviour, that when he uses OWA he sees this message at the beginning, which is fine. But then he sees this message EVERYTIME he opens an email, and that is not right and is very annoying.
It is still working the user only has to click continue..... but it is annoying. Is it some settings in IE that can be adjusted to aviod such? This problem only seems to happen to user with IE8 installed. IE7 or Firefox users are OK.
Thanks.
ASKER
I am a bit surprise MS haven't updated with a fix? Anyway I would rather prefer using Firefox, as it seems OK when doing my owa email through FF.
There is no "fix" - this is by design.
That error message pops up to prevent fraudlent sites posing as www.bank.com etc
The default norm is to install exchange server with a ssl certificate. In case you didn't and you are using self signed cert then you will continue to get that.
User experience in ie8 is mich better than firefox
For example you can press shift + select multiple messages and then delete
In firefox etc you will have to check all boxes
That error message pops up to prevent fraudlent sites posing as www.bank.com etc
The default norm is to install exchange server with a ssl certificate. In case you didn't and you are using self signed cert then you will continue to get that.
User experience in ie8 is mich better than firefox
For example you can press shift + select multiple messages and then delete
In firefox etc you will have to check all boxes
If you don't want to buy a SSL certificate, you can continue to use the self signed certificate and import it into the IE8 setup, this is done clicking install certificate and then selecting place all certificates to the following store, select show physical store and then select trusted root authorities, select local computer as the destination and then import. Finish the procedure, exit internet explorer and then retry OWA site to see if it has imported correctly. Sometimes takes a couple of attempts and needs UAC turned off in Windows 7 & Vista to complete successfully.
Although have to agree with sunnyc7 best way to go would be to use a third party SSL certificate from one of the providers such as godaddy, verisign, etc and importing it into the SBS setup.
Although have to agree with sunnyc7 best way to go would be to use a third party SSL certificate from one of the providers such as godaddy, verisign, etc and importing it into the SBS setup.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Else...you can install the Microsoft Certification-Authority on the server/setup
Create-n-assign the SAN cert for the exchange servers
By default the root cert. of the "Local Certificate Authority" will be installed on all the domain-joined machines
Create-n-assign the SAN cert for the exchange servers
By default the root cert. of the "Local Certificate Authority" will be installed on all the domain-joined machines
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thx.
for that to go away, you can purchase a SSL with your OWA name - mail.domain.com
This affects all other browsers - IE8 / Mozilla / Chrome etc.
The issue is - the self-signed is issued in the name of SERVERNAME - and the domain is mai.domain.com
SERVERNAME doesnt match mail.domain.com
Please ask if you have more questions