Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Cannot sign into Lync with non domain windows 10 machine

Posted on 2016-08-30
3
93 Views
Last Modified: 2016-11-22
Hi all, I'm trying to sign into my corporate Lync server using my non-domain surface pro 3 running windows 10. I have a regular dell windows 7 machine on domain that can. When logging in I get the error" There was a problem verifying the certificate". Event viewer has an error:

"Lync could not connect securely to server myserver.mydomain.local because the certificate presented by the server was not trusted due to validation error 0x80090325.  The issuing certificate authority (CA) for the server's certificate may not be locally trusted by the client, the certificate may be revoked, or the certificate may have expired."

I have tried exporting all related certificates from the working windows 7 machine and importing them onto my surface with no luck. Any other ideas?
0
Comment
Question by:Michael
3 Comments
 
LVL 16

Accepted Solution

by:
Ivan earned 500 total points
ID: 41776168
Hi,

so it seams that your corporate Lync server is using certificate from internal CA?
Did you try to export root CA certificate from CA, and import into Trusted Root Certification Authority?
Do that manually, don't choose "automatically import into store" when you try importing, since sometimes it goes to wrong store.
If you have intermediate CA, import that cert into "Intermediate Cert.." store.

Confirme that those certs are in those stores.

Regards,
Ivan.
0
 
LVL 1

Expert Comment

by:it_medcomp
ID: 41776222
Are you the only one having the problem? I'd start there, because there are three possibilities mentioned: The CA is not trusted, the certificate may have been revoked, or the certificate may have expired. To really know without having to involve multiple people, you can visit testconnectivity.microsoft.com and run the connectivity test for SfB2015 or Lync 2013, depending on what is on your computer. The results will allow you to drill down and it will give detail about your certificate problem, then you can proceed from there. It's free and takes about 2 minutes.
0
 
LVL 1

Author Closing Comment

by:Michael
ID: 41779180
Guys thanks both. I solved it by taking a closer look at the certs. Although I was importing all the certs related to my company, I noticed most of the certs where issued by Entrust. On my domain machine I had a lot of certs for Entrust also which I didn't on my non domain machine. Importing those certs fixed the issue.

Thanks
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
As cyber crime continues to grow in both numbers and sophistication, a troubling trend of optimization has emerged over the last year.
This Experts Exchange video Micro Tutorial shows how to tell Microsoft Office that a word is NOT spelled correctly. Microsoft Office has a built-in, main dictionary that is shared by Office apps, including Excel, Outlook, PowerPoint, and Word. When …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question