I just setup an exchange server. Whenever users attempt to access the exchange server from an outside location not in the LAN, it says:
This Connection is Untrusted
You have asked Firefox to connect
securely to mail.domain.org, but we can't confirm that your connection is secure.
Normally, when you try to connect securely,
sites will present trusted identification to prove that you are
going to the right place. However, this site's identity can't be verified.
What Should I Do?
If you usually connect to
this site without problems, this error could mean that someone is
trying to impersonate the site, and you shouldn't continue.
mail.domain.org uses an invalid security certificate.
The certificate is not trusted because no issuer chain was provided.
The certificate is only valid for DC1.domain.org
(Error code: sec_error_unknown_issuer)
I Understand the Risks
If you understand what's going on, you
can tell Firefox to start trusting this site's identification.
Even if you trust the site, this error could mean that someone is
tampering with your connection.
Don't add an exception unless
you know there's a good reason why this site doesn't use trusted identification.
How can I create a certificate for mail.domain.org that won't show this error. It seems my certificate is pointing to the domain controllers (dc1.domain.org) and that is why the error is displaying. I can't seem to see where to put mail.domain.org in for the certificate.