Solved

Cannot sign into Lync with non domain windows 10 machine

Posted on 2016-08-30
3
80 Views
Last Modified: 2016-11-22
Hi all, I'm trying to sign into my corporate Lync server using my non-domain surface pro 3 running windows 10. I have a regular dell windows 7 machine on domain that can. When logging in I get the error" There was a problem verifying the certificate". Event viewer has an error:

"Lync could not connect securely to server myserver.mydomain.local because the certificate presented by the server was not trusted due to validation error 0x80090325.  The issuing certificate authority (CA) for the server's certificate may not be locally trusted by the client, the certificate may be revoked, or the certificate may have expired."

I have tried exporting all related certificates from the working windows 7 machine and importing them onto my surface with no luck. Any other ideas?
0
Comment
Question by:Michael
3 Comments
 
LVL 16

Accepted Solution

by:
Ivan earned 500 total points
ID: 41776168
Hi,

so it seams that your corporate Lync server is using certificate from internal CA?
Did you try to export root CA certificate from CA, and import into Trusted Root Certification Authority?
Do that manually, don't choose "automatically import into store" when you try importing, since sometimes it goes to wrong store.
If you have intermediate CA, import that cert into "Intermediate Cert.." store.

Confirme that those certs are in those stores.

Regards,
Ivan.
0
 
LVL 1

Expert Comment

by:it_medcomp
ID: 41776222
Are you the only one having the problem? I'd start there, because there are three possibilities mentioned: The CA is not trusted, the certificate may have been revoked, or the certificate may have expired. To really know without having to involve multiple people, you can visit testconnectivity.microsoft.com and run the connectivity test for SfB2015 or Lync 2013, depending on what is on your computer. The results will allow you to drill down and it will give detail about your certificate problem, then you can proceed from there. It's free and takes about 2 minutes.
0
 
LVL 1

Author Closing Comment

by:Michael
ID: 41779180
Guys thanks both. I solved it by taking a closer look at the certs. Although I was importing all the certs related to my company, I noticed most of the certs where issued by Entrust. On my domain machine I had a lot of certs for Entrust also which I didn't on my non domain machine. Importing those certs fixed the issue.

Thanks
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
Office 365 is currently available in five editions. Three of them are for business use: Office 365 Business Essentials, Office 365 Business, and Office 365 Business Premium. Two of them are for home/personal use: Office 365 Home and Office 365 Perso…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now