?
Solved

How can i access webmail without certificate error?

Posted on 2014-04-23
11
Medium Priority
?
3,754 Views
Last Modified: 2014-04-29
When i access my webmail, i receive a message "There is a problem with this website’s security certificate." I click on "Continue to this website (not recommended). " to proceed. How can i access webmail without the certificate error.
Security-certificate.JPG
0
Comment
Question by:christoforatos1968
  • 6
  • 5
11 Comments
 
LVL 11

Expert Comment

by:John Easton
ID: 40017472
I assume your server is using a self-signed certificate.  Therefore it is not trusted by any computer outside your domain.

You have two options if you want to prevent the error message:
1. Buy a Certificate from a Trusted Certificate Authority and set this up on your server
2. Install the Self-Signed Certificate into your computers Trusted Certificates

Obviously number 2 would require you doing this for every computer that connects (or giving staff instructions on how to do this)
0
 

Author Comment

by:christoforatos1968
ID: 40017504
I prefer option 2. How can i do this?
0
 
LVL 11

Expert Comment

by:John Easton
ID: 40017536
Microsoft TechNet has a step by step guide at:  Installing a Self-Signed Certificate as a Trusted Root CA in Windows Vista

This guide is for Vista, but it is similar for other Windows Versions.
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 

Author Comment

by:christoforatos1968
ID: 40017573
I do not have "Local Computer" in "Trusted Root Certification Authorities". The options that i have are "Registry" and "Smart Card'.
0
 
LVL 11

Expert Comment

by:John Easton
ID: 40017592
Do you have administrative rights on your local computer?
0
 

Author Comment

by:christoforatos1968
ID: 40018241
I followed the steps from Technet and i am still not able to access web mail without the certificate error. You can view my screenshots. Maybe i am missing something. I am also using Windows 8.1 .
1.JPG
2.JPG
3.JPG
4.JPG
5.JPG
6.JPG
7.JPG
8.JPG
0
 
LVL 11

Expert Comment

by:John Easton
ID: 40019481
The certificate appears to be issued to yourdomain.lan

Is this the address you are accessing it from?  If your accessing it from over the internet I assume it is not.  Therefore the certificate should include 'Subject Alternate Name' for the different addresses the site can be accessed on.

If it only contains the .lan address and you are using a different address it will cause an error.
0
 

Author Comment

by:christoforatos1968
ID: 40028860
From the server "Certificate Authority" i downloaded the certificate. The date shown on the certificate is "Valid from 11/10/2013 to 29/8/1902. From the browser the certificate error shows "Valid from 11/10/2013 to 9/10/2023". Could this be the reason why i receive the message on web page " Continue to the website (not recommended)."
Server-certificate.JPG
Internet-Explorer-certificate.JPG
0
 
LVL 11

Expert Comment

by:John Easton
ID: 40029112
These appear to be two different certificates.  One is a self-signed certificate for your CA, the other is a certificate issued by the CA for skygreece.xxxx

The dates being different is therefore not a concern - they are separate certificates.  However, the fact the CA cert is already expired is a concern.

Effectively if the CA certificate has expired then the computer will not trust it.  Therefore any certificates issued by this server also cannot be trusted.  I think you need to reissue/renew your CA certificate.

If your using Microsoft Certificate Services, instruction for this can be found here:  Renew a root certification authority
0
 

Author Comment

by:christoforatos1968
ID: 40029612
The CA cert does not show that is expired. The expiration date shows 9/10/2023. The other certificate shows a date of 29/8/1902. Are you referring to this certificate as expired? With a date of 1902?
I downloaded the Certificate Authority from a Linux server. How can i renew the certificate?
0
 
LVL 11

Accepted Solution

by:
John Easton earned 2000 total points
ID: 40029967
Looking at the pictures you attached, one certificate is issued by ca.skygreece.lan to ca.skygreece.lan.  This certificate is the CA Root certificate - also a self-signed certificate and the CA signed it's own certificate.  This expired in 1902, and therefore all certificates signed by this CA will not be trusted.

Therefore even though it issued a cert for skygreece.clearos.lan which appears to be valid, the fact your computer cannot trust the root cert means everything else in the chain is also untrusted.

Unfortunately I have not used any Linux CA's, and therefore have no idea how to renew the Root cert on linux.  Hopefully another expect will reply with help on that.
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
Good news! Plesk 12.5 (with update #28 and above) now includes support for HTTP/2. This is a major update to HTTP1.1, which is over 15 years old. Read below to learn how to enable HTTP/2 on your Media Temple DV with Plesk.
Is your organization moving toward a cloud and mobile-first environment? In this transition, your IT department will encounter many challenges, such as navigating how to: Deploy new applications and services to a growing team Accommodate employee…
Get the source code for a fully functional Access application shell with several popular security features that Access VBA application developers desire, but find difficult or impossible to figure out how to code. You get the source code for managi…
Suggested Courses

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question