Exchange Server - The name on the security certificate is invalid or does not match
Asked By Just Aski
18-Feb-07 02:50 PM
Outlook 2007 against Exchange Server 2007 internal clients receive the
following message on startup and periodically thereafter:
*************
Information you exchange with this site cannot be viewed or changed by
others. Howerever, there is a problem with the site's security certificate.
The security certificate is from a trusted certifying authority.
The security certificate date is valid
The name on the security certificate is invalid or does not match the name
of the site.
Do you want to proceed?
*****************
How is this best resolved?
Thanks!
Exchange Server
(1)
Outlook
(1)
IE
(1)
FQDN
(1)
MVP
(1)
LAN
(1)
IP
(1)
Certificate
(1)
Dave Mills replied...
By getting a certificate that has the correct name in it. The name in the cert
must exactly match the name that is typed into the IE address bar. e.g. if you
get a cert for "myserver" it will not match "myserver.mydomain.com", equally a
cert for "myserver.mydomain.com" will not match "myserver". Also the IP address
will match neither of the above. You may need 2 certs or to educate your users.
On Sun, 18 Feb 2007 11:50:27 -0800, Just Askin <Just
--
Dave Mills
There are 10 type of people, those that understand binary and those that don't.
JustAski replied...
Thanks Dave.
Where in Outlook 2007 do I check the IE address bar? I will need to educate my
LAN users about that.
Dave Mills replied...
On Sun, 18 Feb 2007 14:13:38 -0800, Just Askin
Sorry I have not started to use Outlook 2007 so cannot say exactly but the error
indicates that an access to the server is finding a cert with a name that does
not match the one used to access the server. Often this is because the cert has
the FQDN but the name used to access the server is the simple host name.
--
Dave Mills
There are 10 type of people, those that understand binary and those that don't.
Mark Arnold [MVP] replied...
I think this: http://www.sembee.co.uk/archive/2007/01/21/36.aspx is
probably what you need.
JustAski replied...
Thanks!
From the link:
message on your self generated certificate, which will not be trusted by the
client. It has been confirmed that Outlook does not check the trust status
when connecting to Exchange on the internal network."
So this behavior serves no actual purpose but does generate significant user
impact, work, and administration. One way or another it's broke. I smell a
hotfix in the works.
Thanks for your help mark.
Connecting External Clients to Exchange Server Exchange Server Exchange Server 2003, Outlook 2003. Can my external (outside the LAN) users connect to my Exchange Server from Outlook. I know Outlook provides the capability to create an Exchange Server email
Problem Retrieving Data from Exchange Server? Exchange Server Exchange Server 2003. Outlook 2003. I have some external Exchange clients who are using Outlook connected to Exchange via "RPC over HTTP." Recently they are
Client Outlook Address Book pointed removed Exchange Server Exchange Server (1) Exchange Server 2000 migrated to Exchange Server 2007, exchange server 2000 then was deleted after migration (had a few mistakes within
HTTP Connection to Exchange from Outlook Exchange Server Exchange Server 2003. Outlook 2003. I understand that there is a way to connect Outlook to an Exchange Server (when the client is outside the LAN) using some sort of
dead exchange server Exchange Server Hello, we have a dead exchange server #1. We did the following: (both servers are exchange 2003 ent.) 1. restored our mailboxes to exchange server #2. 2. used ADSI Edit to manual delete exchange server #1. 3. moved offline