• RSS
  • Twitter
  • FaceBook

Exchange Server Forums

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Do my Exchange 2007 required Third party Certificate

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [Microsoft Exchange 2007] >> Outlook Web Access >> Do my Exchange 2007 required Third party Certificate Page: [1]
Login
Message << Older Topic   Newer Topic >>
Do my Exchange 2007 required Third party Certificate - 27.Aug.2008 3:30:35 AM   
umer_javed

 

Posts: 18
Joined: 27.Aug.2008
Status: offline 		Dear All,

Let me first explain the Scenario which i think will help you to understand what help actually I need

We are running MS Exchange server 2007 on MS Windows server 2008 client end operating system is MS Vista business with MS Office 2007 loaded on all the machines for e-mail the users who are moving alot around the country or around the world i've confiugred POP3 account for them to receive the e-mails and for rest of all i configured exchange account in their outlook and if they need to access the e-mail out side they can use OWA. now the issue i am facing is with the users who are using pop3 account when ever we update our address book i have to manually update their address book in their outlook on the other hand the users who are running exchange account get the updates automaticly from the server so i decided to configure the exchange account to all the users instead of POP3.

And now the question which is confusing me is that do i need to install the third party CA certificate to access the exchange account remotly although i've gone through microsoft articals but i am still confused i've consulted with one of my friend who is also using exchange 2007 stated that we need to open some ports on the firewall for exchange account no need for certificate........? now what should i suppose to do ... and what is right or what is wrong.

even though microsoft says when we install the exchange 2007 it installs the certificate by itself.......... If there is already a certificate then why we need another third party certificate.

I AM CONFUSE....
Post #: 1
RE: Do my Exchange 2007 required Third party Certificate - 27.Aug.2008 8:20:18 AM   
pjhutch

 

Posts: 3578
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline 		There are two situations when you need a certificate:
1. Access to the change password feature in OWA
2. To secure email communication between clients PCs and the server

The difference between an internally generated certificate from your own Certificate Authority (CA) server and a thirty party one is that the third party certificate will always be 'trusted', your own CA will NOT be trusted by default as client machines will not know or who controls your CA. So, untrusted certificates will always be challenged when you browse to a site with your own certificate. A trusted CA will not be challenged.


_____________________________

Peter Hutchison MCP
Exchange Administrator
University of Huddersfield

(in reply to umer_javed)
Post #: 2
RE: Do my Exchange 2007 required Third party Certificate - 31.Aug.2008 4:48:44 AM   
umer_javed

 

Posts: 18
Joined: 27.Aug.2008
Status: offline 		Thanks alot Peter you made my life easy.

I have one more question. As I am asked to make a e-mail (xyz@company.com)  account and any e-mail which comes to this account must be forwareded to few other accounts for this i've created a universal security group (ABCdef@company.com)  and users who suppose to receive e-mail from xyz are the member ABcdef and in the mail delivery option of xyz@company.com i've added this security group now when any exchange user sends e-mail to this account reaches to all other e-mail accounts along with the master e-mail account but if I try to send any e-mail from yahoo msn or any other e-mail accounts it give me this error


if (typeof YAHOO == "undefined") {
var YAHOO = {};
}
YAHOO.Shortcuts = YAHOO.Shortcuts || {};
YAHOO.Shortcuts.hasSensitiveText = true;
YAHOO.Shortcuts.sensitivityType = ["adult"];
YAHOO.Shortcuts.doUlt = false;
YAHOO.Shortcuts.location = "us";
YAHOO.Shortcuts.document_id = 0;
YAHOO.Shortcuts.document_type = "";
YAHOO.Shortcuts.document_title = "Undeliverable: test mail";
YAHOO.Shortcuts.document_publish_date = "";
YAHOO.Shortcuts.document_author = "postmaster@HITS-AFRICA.COM";
YAHOO.Shortcuts.document_url = "";
YAHOO.Shortcuts.document_tags = "";
YAHOO.Shortcuts.document_language = "";
YAHOO.Shortcuts.annotationSet = {
"lw_1220172165_0": {
"text": "distribution lists",
"extended": 0,
"startchar": 137,
"endchar": 154,
"start": 137,
"end": 154,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 0.465871,
"type": ["shortcuts:/concept"],
"category": ["CONCEPT"],
"wikiId": "Distribution_list",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "Delivery has failed to these recipients or distribution lists: PMOMailDistribution@hits-africa.com Your message wasn\u0027t delivered because of security policies. Microsoft",
"metaData": {
"visible": "false"
}
},
"lw_1220172165_1": {
"text": "PMOMailDistribution@hits-africa.com",
"extended": 0,
"startchar": 357,
"endchar": 391,
"start": 357,
"end": 391,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/hyperlink/mailto"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "Delivery has failed to these recipients or distribution lists: PMOMailDistribution@hits-africa.com Your message wasn\u0027t delivered because of security policies. Microsoft Exchange",
"metaData": {
"linkHref": "mailto:PMOMailDistribution@hits-africa.com",
"linkProtocol": "mailto",
"linkRel": "nofollow",
"linkTarget": "_blank",
"linkYmailto": "mailto:PMOMailDistribution@hits-africa.com",
"visible": "true"
}
},
"lw_1220172165_2": {
"text": "Microsoft Exchange",
"extended": 0,
"startchar": 465,
"endchar": 482,
"start": 465,
"end": 482,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 0.359265,
"type": ["shortcuts:/us/tag/other/wiki"],
"category": ["WIKI"],
"wikiId": "Microsoft_Exchange_Server",
"relatedWikiIds": ["BlackBerry", "Digital_audio_player", "IPod_touch", "MacBook_Pro", "Macintosh", "Microsoft_SQL_Server", "Microsoft_Visual_Studio", "New_York", "Outlook_Web_Access", "Windows_Server_2008"],
"relatedEntities": [],
"showOnClick": [],
"context": "lists: PMOMailDistribution@hits-africa.com Your message wasn\u0027t delivered because of security policies. Microsoft Exchange will not try to redeliver this message for you. Please",
"metaData": {
"visible": "false"
}
},
"lw_1220172165_3": {
"text": "system administrator",
"extended": 0,
"startchar": 585,
"endchar": 604,
"start": 585,
"end": 604,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 0.325129,
"type": ["shortcuts:/concept"],
"category": ["CONCEPT"],
"wikiId": "System_administrator",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "for you. Please provide the following diagnostic text to your system administrator. Sent by Microsoft Exchange Server 2007 Diagnostic information for administrators",
"metaData": {
"visible": "false"
}
},
"lw_1220172165_4": {
"text": "Microsoft Exchange Server 2007",
"extended": 0,
"startchar": 676,
"endchar": 705,
"start": 676,
"end": 705,
"extendedFrom": "",
"predictedCategory": "MOVIE",
"predictionProbability": "0.278717",
"weight": 0.688408,
"type": ["shortcuts:/us/instance/other/product"],
"category": ["THING"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "the following diagnostic text to your system administrator. Sent by Microsoft Exchange Server 2007 Diagnostic information for administrators: Generating server: HITS-AFRICA.COM PMOMailDistribution@hits-africa.com #550 5.7.1",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_5": {
"text": "HITS-AFRICA.COM",
"extended": 0,
"startchar": 863,
"endchar": 877,
"start": 863,
"end": 877,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/place/virtual/web_site"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "Microsoft Exchange Server 2007 Diagnostic information for administrators: Generating server: HITS-AFRICA.COM PMOMailDistribution@hits-africa.com #550 5.7.1 RESOLVER.RST.AuthRequired; authentication required ##rfc822;pmo@hits-africa.com Original message headers",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_6": {
"text": "pmo@hits-africa.com",
"extended": 0,
"startchar": 998,
"endchar": 1016,
"start": 998,
"end": 1016,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/email_address"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_7": {
"text": "sand.cyberia.net.lb",
"extended": 0,
"startchar": 1075,
"endchar": 1093,
"start": 1075,
"end": 1093,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/place/virtual/web_site"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "5.7.1 RESOLVER.RST.AuthRequired; authentication required ##rfc822;pmo@hits-africa.com Original message headers: Received: from sand.cyberia.net.lb (195.112.195.68) by HITS-MAIL.HITS-AFRICA.COM (10.200.137.33) with Microsoft SMTP Server id 8.1.291.1",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_8": {
"text": "HITS-MAIL.HITS-AFRICA.COM",
"extended": 0,
"startchar": 1116,
"endchar": 1140,
"start": 1116,
"end": 1140,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/place/virtual/web_site"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "required ##rfc822;pmo@hits-africa.com Original message headers: Received: from sand.cyberia.net.lb (195.112.195.68) by HITS-MAIL.HITS-AFRICA.COM (10.200.137.33) with Microsoft SMTP Server id 8.1.291.1; Sun, 31 Aug",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_9": {
"text": "Microsoft",
"extended": 0,
"startchar": 1163,
"endchar": 1171,
"start": 1163,
"end": 1171,
"extendedFrom": "",
"predictedCategory": "ORGANIZATION",
"predictionProbability": "0.970891",
"weight": 0.262392,
"type": ["shortcuts:/us/instance/organization/company/company_name"],
"category": ["ORGANIZATION"],
"wikiId": "Microsoft",
"relatedWikiIds": ["Adobe", "Advanced_Micro_Devices", "Apple_Inc.", "Bear_Stearns", "Google", "IPhone", "Intel_Corporation", "Windows_Vista", "Windows_XP", "Xbox_360"],
"relatedEntities": ["aol", "facebook", "google", "google inc", "microsoft corp", "news corp", "time warner", "time warner inc", "yahoo", "yahoo inc"],
"showOnClick": [],
"context": "message headers: Received: from sand.cyberia.net.lb (195.112.195.68) by HITS-MAIL.HITS-AFRICA.COM (10.200.137.33) with Microsoft SMTP Server id 8.1.291.1; Sun, 31 Aug 2008 11:16:01 +0300",
"metaData": {
"canonicalName": "Microsoft Corporation",
"exchange": "NMS",
"symbol": "MSFT",
"visible": "false"
}
},
"lw_1220172165_10": {
"text": "SMTP Server id",
"extended": 0,
"startchar": 1173,
"endchar": 1186,
"start": 1173,
"end": 1186,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 0.752301,
"type": ["shortcuts:/concept"],
"category": ["CONCEPT"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "headers: Received: from sand.cyberia.net.lb (195.112.195.68) by HITS-MAIL.HITS-AFRICA.COM (10.200.137.33) with Microsoft SMTP Server id 8.1.291.1; Sun, 31 Aug 2008 11:16:01 +0300 Received: from obelix.cyberia.net.lb",
"metaData": {
"visible": "false"
}
},
"lw_1220172165_11": {
"text": "obelix.cyberia.net.lb",
"extended": 0,
"startchar": 1247,
"endchar": 1267,
"start": 1247,
"end": 1267,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/place/virtual/web_site"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "id 8.1.291.1; Sun, 31 Aug 2008 11:16:01 +0300 Received: from obelix.cyberia.net.lb ([195.112.195.98]) by sand.cyberia.net.lb with SMTP id \u003c20080831081352.CYFH21933.sand@obelix.cyberia.net.lb\u003e for \u003cpmo@hits-africa.com\u003e; Sun",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_12": {
"text": "20080831081352.CYFH21933.sand@obelix.cyberia.net.lb",
"extended": 0,
"startchar": 1348,
"endchar": 1398,
"start": 1348,
"end": 1398,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/email_address"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "0300 Received: from obelix.cyberia.net.lb ([195.112.195.98]) by sand.cyberia.net.lb with SMTP id \u003c20080831081352.CYFH21933.sand@obelix.cyberia.net.lb\u003e for \u003cpmo@hits-africa.com\u003e; Sun, 31 Aug 2008 11:13:52 +0300 Received: from",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_13": {
"text": "web65705.mail.ac4.yahoo.com",
"extended": 0,
"startchar": 2238,
"endchar": 2264,
"start": 2238,
"end": 2264,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/place/virtual/web_site"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type:Message-ID; b=jhMHKJZwuZVMdEUZqfIyVlaTV9Rxy71Tezq48ok1sbR2FrDgft1A4nLKfHoWbvrrHaW67gEfgWbHAJY0NkfNans3K1ovjv6xOYG3OQm4vARRg3fn16rvr5uTlr0c7fPG5WGdI2cwhvqyfofjsvP6eiCvlAKxrbc0yckrkg1SgpQ=; X-YMail-OSG: DJACyicVM1msCQ6KgRCj0bey0tbymmq.rJtgPDPqnjzeEmfSKsUOFhimQh167MSJr0eU12LJFYIy7EPJRJjbJpiYWLupjU3i8vuAc4iqym63B689jZl12cw5jDl5yfaROg-- Received: from [80.88.251.162] by web65705.mail.ac4.yahoo.com via HTTP; Sun, 31 Aug 2008 01:15:56 PDT X-Mailer: YahooMailWebService/0.7.218.2",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_14": {
"text": "umer_javed@yahoo.com",
"extended": 0,
"startchar": 2405,
"endchar": 2424,
"start": 2405,
"end": 2424,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/email_address"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "Date: Sun, 31 Aug 2008 01:15:56 -0700 From: umer butt \u003cumer_javed@yahoo.com\u003e Reply-To: \u003cumer_javed@yahoo.com\u003e Subject: test mail To: \u003cpmo@hits-africa.com\u003e MIME-Version: 1.0 Content-Type",
"metaData": {
"visible": "true"
}
},
"lw_1220172165_15": {
"text": "1325680473",
"extended": 0,
"startchar": 2593,
"endchar": 2602,
"start": 2593,
"end": 2602,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/fedex_tracking"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "",
"metaData": {
"verified": "false",
"visible": "true"
}
},
"lw_1220172165_16": {
"text": "1220170556",
"extended": 0,
"startchar": 2604,
"endchar": 2613,
"start": 2604,
"end": 2613,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/fedex_tracking"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "",
"metaData": {
"verified": "false",
"visible": "true"
}
},
"lw_1220172165_17": {
"text": "826088.54218.qm@web65705.mail.ac4.yahoo.com",
"extended": 0,
"startchar": 2644,
"endchar": 2686,
"start": 2644,
"end": 2686,
"extendedFrom": "",
"predictedCategory": "",
"predictionProbability": "0",
"weight": 1,
"type": ["shortcuts:/us/instance/identifier/email_address"],
"category": ["IDENTIFIER"],
"wikiId": "",
"relatedWikiIds": [],
"relatedEntities": [],
"showOnClick": [],
"context": "test mail To: \u003cpmo@hits-africa.com\u003e MIME-Version: 1.0 Content-Type: multipart/alternative; boundary=\u00220-1325680473-1220170556=:54218\u0022 Message-ID: \u003c826088.54218.qm@web65705.mail.ac4.yahoo.com\u003e Return-Path: umer_javed@yahoo.com Received-SPF: None (HITS-MAIL.HITS-AFRICA.COM: umer_javed@yahoo.com does not designate permitted",
"metaData": {
"visible": "true"
}
}
};



 
Delivery has failed to these recipients or distribution lists:

ABCdef@company.com
Your message wasn't delivered because of security policies. Microsoft Exchange will not try to redeliver this message for you. Please provide the following diagnostic text to your system administrator.

(in reply to pjhutch)
Post #: 3
RE: Do my Exchange 2007 required Third party Certificate - 31.Aug.2008 7:05:56 AM   
pjhutch

 

Posts: 3578
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline 		The problem with distribution lists with accounts from different domains is that it one external user emailing the list will not be able to email other users as you will be effectively using Exchange as a 'relay' and hence the error. You would be better off using an external service eg Google groups, for that kind of mailing list.

_____________________________

Peter Hutchison MCP
Exchange Administrator
University of Huddersfield

(in reply to umer_javed)
Post #: 4
RE: Do my Exchange 2007 required Third party Certificate - 31.Aug.2008 8:28:17 AM   
umer_javed

 

Posts: 18
Joined: 27.Aug.2008
Status: offline 		So is there any way we can make it work....?

(in reply to pjhutch)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [Microsoft Exchange 2007] >> Outlook Web Access >> Do my Exchange 2007 required Third party Certificate Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Follow TechGenix on Twitter