Outlook Security Certificate - issued by untrusted company
Solution 1
I was selecting the cert issued by the Root Authority and trying to install that as a root cert authority (which didn't work) - once I selected the Root Certificate and installed it in the proper location it worked without issue!
Solution 2
I was getting the Security Alert while trying to set up Outlook to connect to my company's Exchange Server from a remote location.
As of this writing, when you choose to "View Certificate" from the Security Alert, all you can see is the web server certificate itself in the certification path tab, the root CA cert is not present. So no way to import the Root CA cert and importing the web server cert is useless, doesn't work, period.
In my case I had to go to a properly connected/configured computer in my Windows domain and export the root CA certificate from there. Once I had the Root CA cert, I imported it as many have suggested to the Trusted Root CA section in the certificate store of the problem computer. In both cases I used the MMC console, added the certificates snap-in, selecting computer and local computer.
Related videos on Youtube
03 : 32
07 : 16
23 : 31
05 : 43
01 : 45
Hanny
I am big, I am small! I'm a developer/designer/artist who just likes to make things that work well. Sometimes it's a little thing, sometimes it's something much larger - but I like to develop. I like programming and just figuring out why things don't work and how to make things work more efficiently.
Updated on September 18, 2022Comments
-
Hanny over 1 year
Outlook 2010 - gives me Security alert EVERY time it's opened;
The Security certificate was issued by a company you have not chosen to trust. View the cert to determine whether you want to trust the certifying authority.
I have installed this cert to the trust Root Certification Authorities folder, and tried installing it 'automatically'; but the message persists.
Every time this user opens outlook this messages pops on his machine. Any thoughts? I have also tried not using cached mode, but the issue persisted there too.
I'm a bit clueless at this point.
Server is Windows 2008R2 running exchange.
-
user1364702 almost 12 yearsWhen you look at the cert, who does it say issued the certificate?
-
Mike B almost 12 yearsAlso, what is the date/time expiration for the cert? -
Hanny almost 12 yearsYes, it's the clients exchange server that issued the cert. I realized I was placing the wrong cert into the Trusted Root Cert - once I installed the proper cert (the root cert) to that location it worked fine without issue! :) thanks!
-
-
ravi yarlagadda almost 12 yearsDon't ever do this without actually verifying that you want to trust that root certificate completely. If it's your own internal CA, then you definitely want to trust it - but these trust warnings exist to prevent you from trusting an attacker sitting between you and the server.
-
Hanny almost 12 yearsThanks Shane! It was the clients own internal CA, which is why it was frustrating that the message kept popping up. They were thinking there was something wrong with the server setup.
