Solved

certificate security alert-outlook 2010 with exchange 2010

Posted on 2013-11-18
3
401 Views
Last Modified: 2013-11-27
i just migrated from exchange 2003 to 2010, had to get rid of a certificate for it to work with server 2012 but i got it working.  every time we open up outlook on every one's computer we get this box.  What do i need to change on server to get it away?
I was trying to do a self signed cert but i may have done it wrong?
We are resolving my external dns to a .com but my inside is .local, dont know if that helps?
cert-alert.jpg
0
Comment
Question by:bowlerman25
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 8

Assisted Solution

by:vSolutionsIT
vSolutionsIT earned 250 total points
ID: 39658475
If you are using a self signed cert then you will have to install it on every outlook client computer's personal store and truested certificate store.
you have to check SAN property of the self signed certificate and correct your Exchange/owa/activesync/oab/autodiscover url's accordingly.
Let us know what all entries you have in your certificate's SAN properties.
If you have mail.domain.com in your certificate's SAN property then you will have to set all the url's (both internal and external) using mail.domain.com

for reference you can go through below article of seembee.
http://exchange.sembee.info/2007/install/singlenamessl.asp
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 250 total points
ID: 39658584
You should really be using a trusted SSL certificate. The self signed SSL certificate is designed as a place holder, not really for production use.
Getting rid of the SSL certificate wasn't really the answer - you need to complete the configuration of Exchange correctly.

You can acquire a suitable SSL certificate for less than $60/year.
Then you will just need to configure Exchange to use the external host name internally.
http://semb.ee/hostnames

Simon.
0
 

Author Comment

by:bowlerman25
ID: 39682096
we went with buying an ssl certificate through go daddy, got the best price. had to get ucc because of exchange.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question