?
Solved

Exchange 2010 SSL Certificate errors

Posted on 2013-06-26
5
Medium Priority
?
27 Views
Last Modified: 2015-06-23
Good day ya all,

I have a question about Exchange 2010 SP1.  When I try to connect a client on RPC/HTTPS I keep getting a certificate error.  I have a self signed certificate from our own internal CA.

I can connect Phones and Tablets 100% working, but as soon as I try to connect any outlook client to run on RPC a get a error stating that the certificate is not trusted.

Now I now from looking around on the net that all white papers say that I have to install a third Party Trusted SSL certificate, but a SAN certificate is not cheap any more from my currency to Dollar, an my Director does not want to pay the money.

So my question is, is there any way to tell outlook or exchange to disgard certificate error and just connect to exchange anyway no matter what.  I dont care if its a secure connection on not, I just want outlook to connect.

I have setup my DNS Records, OWA is working from the outside.
0
Comment
Question by:Sick_Puppy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 2000 total points
ID: 39278381
First - Exchange 2010 SP1 is very old and no longer supported. You should upgrade to Exchange 2010 SP2 or SP3.

Internal CA's are a pain to get working correctly. A SAN certificate is $60/year - if you use a GoDaddy reseller then you can usually purchase in your own currency. It will make life a lot easier and you will not have to tell users to ignore errors in OWA.

If you browse to OWA from the client do you get an SSL prompt? If so then that is your problem. Outlook Anywhere doesn't cope well with the prompts.
You need to import the root certificate of your internal CA to the client.

As for ignoring the errors - no, that isn't possible. That is why using a trusted certificate is a must.

Simon.
0
 

Author Comment

by:Sick_Puppy
ID: 39279016
Hi Simon,
You are spot on,When browsing to OWA,I do get the SSL warbing page.  But my proplem is that Outlook does not connect at all,even if you accept the certificate error it then just gives a certificate name mismatch error and then disconnects.

The certificate that tou are talking about,is that the certificate on exchange or the one from the DC that I should import into the client machine?

Jaco
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39279069
Outlook cannot cope with the certificate prompt, so that will stop Outlook Anywhere from connecting.

I am referring to the root certifcate on the Certificate Authority. I don't deploy CA for any clients (I always use commercial certificates) so I am not sure where you download it.

You don't want to download the server's own certificate.

Simon.
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40845718
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses
Course of the Month14 days, 1 hour left to enroll

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question