Cougie
Visitor.
1504 views

Security message in Outlook 2013/2016

Hi.
I have GMS Version: 14.2.1 Build: 289 installed.
My users use either Outlook 2013 or 2016 to connect to Mobility using Exchange activesync.

So every time Outlook is started the security alert pops up with the message "The name on the security certificate is invalid or does not match the name of the site."
Is there a way to disable this message? Or does I have do do something like get a paid SSL certificate?
I'd rather just have the message disabled if possible as everything is working fine.

Thanks!
Labels (1)
0 Likes
7 Replies
Micro Focus Expert
Micro Focus Expert

Re: Security message in Outlook 2013/2016

Hi,

I suggest that you double-check the configuration of your AutoDiscover setup.

Document reference: https://www.novell.com/documentation/groupwisemobility2014r2/gwmob2014r2_guide_admin/data/admin_mgt_autodiscover.html

Please let us know how it goes.

Cheers,
Laura Buckley

Views/comments expressed here are entirely my own.
If you find this post helpful, please show your appreciation and click on "Like" below...
0 Likes
Cougie
Visitor.

Re: Security message in Outlook 2013/2016

Hi,

Thanks for your reply. But I'm not even using Autodiscover here. I set up the accounts on Outlook by choosing Exchange ActiveSync and then manually typing in the email address, username. password and server address.
And I do not intend to use autodiscover here.

Thanks.
0 Likes
Micro Focus Expert
Micro Focus Expert

Re: Security message in Outlook 2013/2016

Hi,

Thanks for the feedback.

You may want to reconsider the use of self-signed certificates, see here: https://www.novell.com/documentation/groupwisemobility2014r2/gwmob2014r2_guide_admin/data/overview.html

Cheers,
Laura Buckley

Views/comments expressed here are entirely my own.
If you find this post helpful, please show your appreciation and click on "Like" below...
0 Likes
Knowledge Partner
Knowledge Partner

Re: Security message in Outlook 2013/2016

In article <Cougie.7uekwo@no-mx.forums.microfocus.com>, Cougie wrote:
> So every time Outlook is started the security alert pops up with the
> message "The name on the security certificate is invalid or does not
> match the name of the site."

The cert on your GMS likely is set with the initial internal host name
of the server at the time of GMS installation, and you are pointing to
them with some other name. Just harmonizing that may help. Even if it
is just to change the local host name and then remint your self
certified cert.

> Is there a way to disable this message?

Nope, not going to happen with Microsoft products anytime soon. They've
been taken to task for weak security postures in the past that they are
not about to step back there now that they finally 'get it' about
security.

> Or does I have do do something like get a paid SSL certificate?


About the certs in question:
https://www.novell.com/documentation/groupwisemobility2/gwmob2_guide_adm
in/data/admin_sec_admin.html#admin_sec_admin_ssl_device


Andy of
http://KonecnyConsulting.ca in Toronto
Knowledge Partner
http://forums.novell.com/member.php/75037-konecnya
If you find a post helpful and are logged in the Web interface, please
show your appreciation by clicking on the star below. Thanks!
GMS troubleshooting tips at http://www.konecnyad.ca/andyk/gwmobility.htm


___
Andy of Konecny Consulting in Toronto
Knowledge Partner Profile
If you find a post helpful, click the Like button below. Thanks!
0 Likes
Cougie
Visitor.

Re: Security message in Outlook 2013/2016

konecnya;2451657 wrote:
In article <Cougie.7uekwo@no-mx.forums.microfocus.com>,
The cert on your GMS likely is set with the initial internal host name
of the server at the time of GMS installation, and you are pointing to
them with some other name. Just harmonizing that may help. Even if it
is just to change the local host name and then remint your self
certified cert.



So the server address used for outlook is (Eg) mobility.company.com.au. which has an A record resolving to their public IP.

The host name of the Mobility SLES server is 'mobility' and the domain is 'company' (Rather than company.com.au)

So does it mean that if I change the domain name to company.com.au that will give a full name of mobility.company.com.au which matches the server address used in Outlook?

If so I just tried changing it on the Mobility server (SLES 12) but it won't save. (ie from company to company.com.au) Even after I reboot it still goes back to 'company.' Am I missing something here?

Thanks
0 Likes
Micro Focus Expert
Micro Focus Expert

Re: Security message in Outlook 2013/2016

Hi,

I recommend taking a look at this TID: https://www.novell.com/support/kb/doc.php?id=7014481

Please let us know how it goes.

Cheers,
Laura Buckley

Views/comments expressed here are entirely my own.
If you find this post helpful, please show your appreciation and click on "Like" below...
0 Likes
snielson1 Absent Member.
Absent Member.

Re: Security message in Outlook 2013/2016

No need to change the entire hostname of the server. That will actually mess with the encryption in serveral XML files, and requires a bit of work to fix (the TID).

If you don't mind self signed certificates, you should just remake a new self signed with the correct common name (DNS or IP you're using in outlook).

You could even go one step further, and set up a free trusted certificate with LetsEncrypt
https://forums.novell.com/showthread.php/502375-LetsEncrypt-setup
This will pass all checks (common name, expiry, trusted CA) and will prevent extra steps with outlook (importing the self signed)

Good luck!

Shane Nielson Kind of alright at doing stuff with the computer thing
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.