Member_2_8173036
asked on
How to fix the Security Alert outlook.office365.com
Security Alert outlook.office365.com message pop up all the time.
We are receiving this same Security Alert randomly for many users. We are running Outlook o365 2016 and Office 2013 on Windows 10. Any idea?
Security-Alert-outlook.office365.jpg
We are receiving this same Security Alert randomly for many users. We are running Outlook o365 2016 and Office 2013 on Windows 10. Any idea?
Security-Alert-outlook.office365.jpg
either they to recreate the profile or reboot the computers if these mailboxes are in o365.
In Details tab you'll find additional info. Also you can check here the office url. Is it the same cert?
https://www.sslshopper.com/ssl-checker.html?
In my case it was not but the issue disappered by itself.
https://www.sslshopper.com/ssl-checker.html?
In my case it was not but the issue disappered by itself.
There was a known issue that caused this last week (EX148344 ), it seems to be still recurring. I've pinged some folks on this, and you should open a support ticket in the portal to have this prioritized.
As the cert dies seem valid, can you also check any intermediates and the root?
ASKER
I do not see anywhere that MS resolved the issue. We still getting the popp ups all over.
ASKER
I found the issue on the portal by looking for the EX148344 (see attachment). MS claims that they resolve the issue...
EX148344_en-us_docx.docx
EX148344_en-us_docx.docx
ASKER
MS came with the "fix" by adding the registry entry "ExcludeHttpsRootDomain" with value 1 in Computer\HKEY_CURRENT_USER \Software\ Microsoft\ Office\16. 0\Outlook\ AutoDiscov er -- but still an issue...
https://outlook.office365. com is running both TLSv1.0 + TLSv1.1 which many sites + email clients + browsers have deprecated, reporting sites running these protocols as suspicious.
That's my guess.
There's nothing you can do about this, unless you're an admin on this site + can correct the SSL config to crop both these old/deprecated protocols.
Likely best to open a support ticket asking them to fix their SSL config
That's my guess.
There's nothing you can do about this, unless you're an admin on this site + can correct the SSL config to crop both these old/deprecated protocols.
Likely best to open a support ticket asking them to fix their SSL config
ASKER
It’s got to be a way to fix it…
Here what found out: if I take users device out of my network (literally anywhere) everything works great and no pop ups. Once I put it back the security message will came back no matter machine joined to domain or not.
MS "found" the old case that related to many hops (routs) the packet travels via ISP. They claim that this is the ISP issue. In my case it is Comcast. I trace the packet from my home and from work environment. I have the way higher performance the lowest latency at the work place than home and almost no differences between the probes at work comparing home network. I do not believe the issue related to ISP, but I will wait on MS when they send me a proof.
Here what found out: if I take users device out of my network (literally anywhere) everything works great and no pop ups. Once I put it back the security message will came back no matter machine joined to domain or not.
MS "found" the old case that related to many hops (routs) the packet travels via ISP. They claim that this is the ISP issue. In my case it is Comcast. I trace the packet from my home and from work environment. I have the way higher performance the lowest latency at the work place than home and almost no differences between the probes at work comparing home network. I do not believe the issue related to ISP, but I will wait on MS when they send me a proof.
I think the MS person you spoke with is highly confused.
Number of hops + link speed have no correlation to an SSL error.
Number of hops + link speed have no correlation to an SSL error.
ASKER
Yeah...
The strange part is that no issues outside of domain....
The strange part is that no issues outside of domain....
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Hey David,
What tool do you use scanning the https://outlook.office365.com? Thank you
What tool do you use scanning the https://outlook.office365.com? Thank you
ASKER
Thank you all for your help!!!
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I have recommended this question be closed as follows:
Accept: 'David Favor' (https:#a42691846)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
I have recommended this question be closed as follows:
Accept: 'David Favor' (https:#a42691846)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
Not nice, but no means to investigate further since the error went away in an handful of hours