Guest Steven Posted August 1, 2008 Posted August 1, 2008 Hello, I'm running Win2K3 R2 and Exchange 2003 and installed Certification Authority to process certs for OWA. When a user clicks to trust/install the certificate during an OWA session the cert is never saved to the Trusted Root Certificate Authority section of their browser and they are prompted the next time they log on to trust /install the cert. Manually copying the .cer file and adding it to the local computer (even directly to the Trusted Root Certificate Authority container) has no affect. Please help, any assistance is greatly appreciated. Quote
Guest Steven Posted August 1, 2008 Posted August 1, 2008 Thanks for the response, I used this procedure exactly: http://www.msexchange.org/tutorials/SSL_En...g_OWA_2003.html "Brian Komar (MVP)" wrote: <span style="color:blue"> > How did you set up the CA? > Did you follow the best practices in the whitepaper available at > www.microsoft.com/pkl > Did you use certutil to publish the root CA certificate as a trusted root > authority for the forest? > Brian > > "Steven" <Steven@discussions.microsoft.com> wrote in message > news:69FFAB5D-52A0-45C6-B908-57DE64C19F30@microsoft.com...<span style="color:green"> > > Hello, > > > > I'm running Win2K3 R2 and Exchange 2003 and installed Certification > > Authority to process certs for OWA. When a user clicks to trust/install > > the > > certificate during an OWA session the cert is never saved to the Trusted > > Root > > Certificate Authority section of their browser and they are prompted the > > next > > time they log on to trust /install the cert. Manually copying the .cer > > file > > and adding it to the local computer (even directly to the Trusted Root > > Certificate Authority container) has no affect. Please help, any > > assistance > > is greatly appreciated. </span> > </span> Quote
Guest Brian Komar \(MVP\) Posted August 1, 2008 Posted August 1, 2008 Although the procedure installs a CA and installas an SSL certificate, it is a far cry from properly setting up a PKI and establishing certificate trust in the enterprise. Please look for the best practices whitepaper I referenced. You have a long way to go on the PKI front for your deployment. Brian "Steven" <Steven@discussions.microsoft.com> wrote in message news:2EF63311-1126-4115-932E-E366B8C861F8@microsoft.com...<span style="color:blue"> > Thanks for the response, I used this procedure exactly: > http://www.msexchange.org/tutorials/SSL_En...g_OWA_2003.html > > "Brian Komar (MVP)" wrote: ><span style="color:green"> >> How did you set up the CA? >> Did you follow the best practices in the whitepaper available at >> www.microsoft.com/pkl >> Did you use certutil to publish the root CA certificate as a trusted root >> authority for the forest? >> Brian >> >> "Steven" <Steven@discussions.microsoft.com> wrote in message >> news:69FFAB5D-52A0-45C6-B908-57DE64C19F30@microsoft.com...<span style="color:darkred"> >> > Hello, >> > >> > I'm running Win2K3 R2 and Exchange 2003 and installed Certification >> > Authority to process certs for OWA. When a user clicks to trust/install >> > the >> > certificate during an OWA session the cert is never saved to the >> > Trusted >> > Root >> > Certificate Authority section of their browser and they are prompted >> > the >> > next >> > time they log on to trust /install the cert. Manually copying the .cer >> > file >> > and adding it to the local computer (even directly to the Trusted Root >> > Certificate Authority container) has no affect. Please help, any >> > assistance >> > is greatly appreciated.</span> >> </span></span> Quote
Guest Dan Posted August 2, 2008 Posted August 2, 2008 Brian, for the convience of the poster and because I was interested as well, I tried your web link with the following result: the web link is not found and it gives you a list of options. Which is best for the user to choose. http://www.microsoft.com/pkl We are sorry, the page you requested cannot be found. See below for search results close to your request, or try a new search. Unless I copied and copied your web link incorrectly which is entirely possibly since I am but a human computer user. <smile> "Brian Komar (MVP)" wrote: <span style="color:blue"> > Although the procedure installs a CA and installas an SSL certificate, it is > a far cry from properly setting up a PKI and establishing certificate trust > in the enterprise. > Please look for the best practices whitepaper I referenced. > You have a long way to go on the PKI front for your deployment. > Brian > > "Steven" <Steven@discussions.microsoft.com> wrote in message > news:2EF63311-1126-4115-932E-E366B8C861F8@microsoft.com...<span style="color:green"> > > Thanks for the response, I used this procedure exactly: > > http://www.msexchange.org/tutorials/SSL_En...g_OWA_2003.html > > > > "Brian Komar (MVP)" wrote: > ><span style="color:darkred"> > >> How did you set up the CA? > >> Did you follow the best practices in the whitepaper available at > >> www.microsoft.com/pkl > >> Did you use certutil to publish the root CA certificate as a trusted root > >> authority for the forest? > >> Brian > >> > >> "Steven" <Steven@discussions.microsoft.com> wrote in message > >> news:69FFAB5D-52A0-45C6-B908-57DE64C19F30@microsoft.com... > >> > Hello, > >> > > >> > I'm running Win2K3 R2 and Exchange 2003 and installed Certification > >> > Authority to process certs for OWA. When a user clicks to trust/install > >> > the > >> > certificate during an OWA session the cert is never saved to the > >> > Trusted > >> > Root > >> > Certificate Authority section of their browser and they are prompted > >> > the > >> > next > >> > time they log on to trust /install the cert. Manually copying the .cer > >> > file > >> > and adding it to the local computer (even directly to the Trusted Root > >> > Certificate Authority container) has no affect. Please help, any > >> > assistance > >> > is greatly appreciated. > >> </span></span> > </span> Quote
Guest Brian Komar \(MVP\) Posted August 2, 2008 Posted August 2, 2008 Sorry for the typo. But I still figured that anyone could figure out a type for pkl vs pki <G>. www.microsoft.com/pki Brian "Dan" <Dan@discussions.microsoft.com> wrote in message news:46376CA4-571F-4526-B04C-CF00C47C9AE3@microsoft.com...<span style="color:blue"> > Brian, for the convience of the poster and because I was interested as > well, > I tried your web link with the following result: > > the web link is not found and it gives you a list of options. Which is > best > for the user to choose. > > http://www.microsoft.com/pkl > > We are sorry, the page you requested cannot be found. > See below for search results close to your request, or try a new search. > > Unless I copied and copied your web link incorrectly which is entirely > possibly since I am but a human computer user. <smile> > > "Brian Komar (MVP)" wrote: ><span style="color:green"> >> Although the procedure installs a CA and installas an SSL certificate, it >> is >> a far cry from properly setting up a PKI and establishing certificate >> trust >> in the enterprise. >> Please look for the best practices whitepaper I referenced. >> You have a long way to go on the PKI front for your deployment. >> Brian >> >> "Steven" <Steven@discussions.microsoft.com> wrote in message >> news:2EF63311-1126-4115-932E-E366B8C861F8@microsoft.com...<span style="color:darkred"> >> > Thanks for the response, I used this procedure exactly: >> > http://www.msexchange.org/tutorials/SSL_En...g_OWA_2003.html >> > >> > "Brian Komar (MVP)" wrote: >> > >> >> How did you set up the CA? >> >> Did you follow the best practices in the whitepaper available at >> >> www.microsoft.com/pkl >> >> Did you use certutil to publish the root CA certificate as a trusted >> >> root >> >> authority for the forest? >> >> Brian >> >> >> >> "Steven" <Steven@discussions.microsoft.com> wrote in message >> >> news:69FFAB5D-52A0-45C6-B908-57DE64C19F30@microsoft.com... >> >> > Hello, >> >> > >> >> > I'm running Win2K3 R2 and Exchange 2003 and installed Certification >> >> > Authority to process certs for OWA. When a user clicks to >> >> > trust/install >> >> > the >> >> > certificate during an OWA session the cert is never saved to the >> >> > Trusted >> >> > Root >> >> > Certificate Authority section of their browser and they are prompted >> >> > the >> >> > next >> >> > time they log on to trust /install the cert. Manually copying the >> >> > .cer >> >> > file >> >> > and adding it to the local computer (even directly to the Trusted >> >> > Root >> >> > Certificate Authority container) has no affect. Please help, any >> >> > assistance >> >> > is greatly appreciated. >> >></span> >> </span></span> Quote
Guest Dan Posted August 2, 2008 Posted August 2, 2008 Of course, thanks <grin --- me and the slow brain activity on a Saturday in the SouthWestern U.S.A.> "Brian Komar (MVP)" wrote: <span style="color:blue"> > Sorry for the typo. But I still figured that anyone could figure out a type > for pkl vs pki <G>. > www.microsoft.com/pki > Brian > > "Dan" <Dan@discussions.microsoft.com> wrote in message > news:46376CA4-571F-4526-B04C-CF00C47C9AE3@microsoft.com...<span style="color:green"> > > Brian, for the convience of the poster and because I was interested as > > well, > > I tried your web link with the following result: > > > > the web link is not found and it gives you a list of options. Which is > > best > > for the user to choose. > > > > http://www.microsoft.com/pkl > > > > We are sorry, the page you requested cannot be found. > > See below for search results close to your request, or try a new search. > > > > Unless I copied and copied your web link incorrectly which is entirely > > possibly since I am but a human computer user. <smile> > > > > "Brian Komar (MVP)" wrote: > ><span style="color:darkred"> > >> Although the procedure installs a CA and installas an SSL certificate, it > >> is > >> a far cry from properly setting up a PKI and establishing certificate > >> trust > >> in the enterprise. > >> Please look for the best practices whitepaper I referenced. > >> You have a long way to go on the PKI front for your deployment. > >> Brian > >> > >> "Steven" <Steven@discussions.microsoft.com> wrote in message > >> news:2EF63311-1126-4115-932E-E366B8C861F8@microsoft.com... > >> > Thanks for the response, I used this procedure exactly: > >> > http://www.msexchange.org/tutorials/SSL_En...g_OWA_2003.html > >> > > >> > "Brian Komar (MVP)" wrote: > >> > > >> >> How did you set up the CA? > >> >> Did you follow the best practices in the whitepaper available at > >> >> www.microsoft.com/pkl > >> >> Did you use certutil to publish the root CA certificate as a trusted > >> >> root > >> >> authority for the forest? > >> >> Brian > >> >> > >> >> "Steven" <Steven@discussions.microsoft.com> wrote in message > >> >> news:69FFAB5D-52A0-45C6-B908-57DE64C19F30@microsoft.com... > >> >> > Hello, > >> >> > > >> >> > I'm running Win2K3 R2 and Exchange 2003 and installed Certification > >> >> > Authority to process certs for OWA. When a user clicks to > >> >> > trust/install > >> >> > the > >> >> > certificate during an OWA session the cert is never saved to the > >> >> > Trusted > >> >> > Root > >> >> > Certificate Authority section of their browser and they are prompted > >> >> > the > >> >> > next > >> >> > time they log on to trust /install the cert. Manually copying the > >> >> > .cer > >> >> > file > >> >> > and adding it to the local computer (even directly to the Trusted > >> >> > Root > >> >> > Certificate Authority container) has no affect. Please help, any > >> >> > assistance > >> >> > is greatly appreciated. > >> >> > >> </span></span> > </span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.