Re: Security Alert
From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 10/28/04
- Next message: Steven L Umbach: "Re: AT command and Access Denied"
- Previous message: Roger Abell: "Re: Encrypted Script"
- In reply to: Sean: "Security Alert"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 27 Oct 2004 23:05:45 -0700
I believe you are up against a fundemental fact of life
about how SSL works, the cert used is examined by the
client which can be configured to only accept valid certs,
or warn, etc..
The names used to access the site need to be what is
stated when cert is acquired if you are wanting to provide
SSL that will be seen as valid by a client no matter how it
is configured. Whether you can do this depends on how
your DNS infrastructure is defined, relative to internal and
external resolution.
-- Roger Abell Microsoft MVP (Windows Server System: Security) MCSE (W2k3,W2k,Nt4) MCDBA "Sean" <Sean@discussions.microsoft.com> wrote in message news:7023EAD9-3C74-4769-A62E-E6D2C17295E5@microsoft.com... > Hi > > I have a OWA server behind a ISA server. The same certificate is installed > on both servers. The common name on OWA server is "webserver" > When I hit internally my OWA server https://webserver/exchange the log on > window comes up, but when I hit externally my OWA server > https://10.10.10.10/exchange I receive this message: There is a problem with > the site's security certificate - The name on the security certificate is > invalid or does not match the name of the site" > > I have to click YES in order to get the log on windows ... > > How can I fix this warning? > > Thanks
- Next message: Steven L Umbach: "Re: AT command and Access Denied"
- Previous message: Roger Abell: "Re: Encrypted Script"
- In reply to: Sean: "Security Alert"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
