There is a problem with the proxy server's security certificate. The name on the security certificate is invalid or does not match the name of the target site "Mailserver"

Similar Messages

• Hi there, I have a problem with my iPod Classic (from 2009). Everytime I connect it to my computer (Windows), iTunes does not work anymore. Music is automatically deleted on my iPod. Any suggestions please?

  Hi there, I have a problem with my iPod Classic (from 2009). Everytime I connect it to my computer (Windows), iTunes does not work anymore. Music is automatically deleted on my iPod. Any suggestions please?

  Thanks, for info, iPod Classic is a slower machine compared the Nano, unfortunately, if you read these discussions, majority of the freezes involved iTunes 10. Although if might be just slow and some impatient user just disconnect the iPod ands cause more problems. ( Yes I also did that but safely by doing a iPod Hard Reset, before disconnecting).
  Here is the Apple support article that may help you.
  http://support.apple.com/kb/TS1717
  or my usual solution for Windows Users.
  Antivirus has a tendency to freeze iTunes sync Operation with iPod Classic, causing a timeout, which corrupt your iPod filesystem, so when iTunes can't read the iPod, it is pointing to this problem. Other causes is when your iPod hardisk is dying, or your battery is dying causing hardisk crashes.
  My suggestion.
  Connect your iPod to the PC and run chkdsk, to fix any iPod diskerror, then disconnect it, after chkdsk complete.
  Disconnect your PC from Internet. (just to make sure no nasties creep into your system while you syncing.
  Stop the Antivirus program
  Connect your iPod to the PC, using a high speed USB 2.0 port at the back of your PC, do not use any USB Hub.
  When iTunes Open up, Restore your iPod please, this is for iTunes to map correctly, to fix the corrupted filesystem.
  When Restore complete, eject the iPod and reconnect again.
  Sync your ipod, preferably manually Manage in small batches and disconnect after every batch, to check that all is well.
  When all sync is complete, and iPod disconnected, start back your Antivirus and connect back the Internet.
  Good Luck!

• The name of the security certificate is invalid or does not match the name of the site error?

  I am looking for some help folks. We are in a Outlook 2007/Exchange2010/Windows2008R2 environment.
  When users open Outlook off the network, and occasionally on the network, they get the error
  The name of the security certificate is invalid or does not match the name of the site error
  The CAS hostname is HRECAS.XXX.ORG. The URL that is listed on the SSL certificate (issued by VeriSign) is WEB.XXX.ORG. WEB.XXX.ORG is what users use to get to OWA and such.
  When I use testexchangeconnectivity.com, under certificate name validation I see an error that reads:
  Host name autodiscover.xxx.org doesn't match any name found on the server certificate CN=web.xxx.org.
  Does this mean somehow we have to add autodiscover.xxx.org on the certificate?
  I tried to add AutoDiscoverExternalUri using
  http://support.microsoft.com/?kbid=940726 &
  http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/2d0c0f5f-e4ec-4f33-a37d-b94fd7a2319f on the CAS server.
  Set-ClientAccessServer -identity HRECAS -AutodiscoverServiceExternalUri
   https://autodiscover.xxx.org/Autodiscover/Autodiscover.xml 
  I get an error that says
  "a positional parameter cannot be found that accepts argument '-AutoDiscoverExternalUri'.
  Can someone point to me what I am doing wrong with the command and whether I should be concerning myself with adding that line? By the way the
  InternalUrl information is already configured on the system. Also should I edit the certificate to add autodiscover.xxx.org?
  Thank in advance for your support.
  TD
  TD

  Hi Tapera,
  Thanks for the question.
  SRV record is a good idea. You can set the SRV to
  https://web.abc.com/autodiscover/autodiscover.xml but you must make sure the
  url can be resolved from External clients.
  In addition, there is still a issue. It is hard coded that Outlook will find the autodiscover by the orders below:
  1. Access autodiscover via SCP in AD.
  https://web.abc.com/autodiscover/autodiscover.xml
  2. If SCP access fails, it will try:
  https://abc.com/autodiscover/autodiscover.xml
  3. Then
  https://autodiscover.abc.com/autodiscover/autodiscover.xml
  4. Local XML file
  5. SRV record
  As you can see, Outlook will try SRV record at last. Therefore, it will still try to access
  https://autodiscover.abc.com/autodiscover/autodiscover.xml each time you run Outlook. Then the certificate warning will still persists.
  I have a workaround solution. You can do a local policy to disable the autodiscover to access the
  https://autodiscover.abc.ocom/autodiscover/autodiscover.xml by:
  1.   
  On the Outlook client machine, open regedit and add the following key:
  HKEY_CURRENT_USER\Software\Microsoft\Office\12.0\Outlook\Autodiscover
           "ExcludeHttpsAutodiscoverDomain"
           "ExcludeHttpsRootDomain"
  2.   
  Then set the value to “1” on the above two keys.
  Thanks,
  Simon  

• Outlook Security Alert - "the name on the security certificate is invalid or does not match the name of the site"

  Due to our company changing names, we recently moved to a new domain. All users were at first getting a certificate error when opening Outlook "the name on the security certificate is invalid or does not match the name of the site." After our network
  admin made some changes, nobody receives this error anymore except one user. The URL at the top of the security alert is the old domain, mail.olddomain.com. I checked the users Exchange Proxy Settings in Outlook, everything is showing the URL's of the new
  domain so I'm not sure where this is coming from. I'm assuming it has to be something on her local machine since she is the only one who still gets the error.
  Thanks in advance for any help.
  Exchange server 2008
  Outlook 2010

  Hi,
  Please follow all above suggestions to confirm whether the issue happens in OWA. And run Test E-mail AutoConfiguration in Outlook to check whether there is any URL settings using the old domain.
  If the issue doesn’t happen in OWA and your URL configurations are all same as others and set correctly, please create a new Outlook profile to have a try.
  Thanks,
  Winnie Liang
  TechNet Community Support

• "Name on the Security Certificate is Invalid or Does not Match..." using Outlok 2007 w/ Exchange 2007

  Good afternoon!
  We just completed our Exchange 2007 implementation (migration from Exchange 2003... a fun romp of 24 straight hours for the final push) and noticed an error that only occurs on Outlook 2007 clients connecting to the Exchange 2007 server: "Name on the Security Certificate is Invalid or Does Not Match the Name on the Certificate".
  Now, I've done my reading into this and have determined that due to how Outlook 2007 clients managed their OAB, it is essentially through a web virtual directory now, no longer through Public Folders and this is essentially the base of our issue. See, our mail server has an internal FQDN of mail.ourdomain-domain.com whereas it has an external FQDN (which is what the SSL Cert is tied to) of owa.ourdomain.com.
  So, essentially what I'm seeing is our internal Outlook 2007 clients (limited to I.S. employees only right now, thankfully) are seeing this SSL error because Outlook 2007 is trying to pick up the OAB using the internal FQDN instead of the external FQDN (which would work as well, due to some internal DNS trickery we have configured).
  My question is (finally), is there a way to circumvent this internally so we never see this SSL error prompt or a way to force Outlook 2007 to use the external FQDN? I have made sure all the settings in Exchange Management Console for OAB and the like have both the internal and external FQDN set to owa.ourdomain.com (the valid SSL name), but it does not appear to have made a difference. Granted, I have not rebooted... but I do not think that is necessary in this instance.
  Any suggestions would be appreciated. Thanks!!

  Hi All,
  1) I am using Windows SBS Server 2008 with Exchange 2007 installed on it. With all the Certicate configured internally. We haven’t purchased the Certificate from any outside authority yet.
  2) Also, user were getting Error message "The name on the security certificate is invalid or does not match the name of the site" in outlook, to resolve this issue I followed the steps mention on "http://support.microsoft.com/kb/940726" &  “http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/697f79e2-ca8f-4a2e-bae5-55d3fa7f703f/?prof=required” however I was able run only first command as I was unable to find "EWS (Default Web Site)", "oab (Default Web Site)", "unifiedmessaging (Default Web Site)".
  3) After reaserching, I run following commands to get the status, location of WebServicesVirtualDirectory, OABVirtualDirectory & UMVirtualDirectory
  [PS] C:\Windows\System32>Get-WebServicesVirtualDirectory | fl
  Name                          : EWS (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/EWS/Exchange.asmx
  ExternalUrl              :
  [PS] C:\Windows\System32>Get-OABVirtualDirectory | fl
  Name                          : OAB (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/OAB
  ExternalUrl              :
  [PS] C:\Windows\System32>Get-UMVirtualDirectory | fl
  Name                          : UnifiedMessaging (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/UnifiedMessaging/Service.asmx
  ExternalUrl               :
  4) Then after getting the correct locations of all the directory I run the following commands to change the internal url on existing Certs
  Set-ClientAccessServer -Identity PASVR01 -AutodiscoverServiceInternalUri https://pasvr01/owa/autodiscover/autodiscover.xml
  Set-WebServicesVirtualDirectory -Identity "PASVR01\EWS (SBS Web Applications)" -InternalUrl https://pasvr01/owa/ews/exchange.asmx
  Set-OABVirtualDirectory -Identity "PASVR01\OAB (SBS Web Applications)" -InternalUrl https://pasvr01/owa/oab
  Set-UMVirtualDirectory -Identity "PASVR01\UnifiedMessaging (SBS Web Applications)" -InternalUrl https://pasvr01/owa/unifiedmessaging/service.asmx
  5) However, this does'nt resolved our issue so run the following commands to change the external url on existing Certs
  Set-WebServicesVirtualDirectory -Identity "PASVR01\EWS (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/ews/exchange.asmx
  Set-OABVirtualDirectory -Identity "PASVR01\OAB (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/oab
  Set-UMVirtualDirectory -Identity "PASVR01\UnifiedMessaging (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/unifiedmessaging/service.asmx
  6) I also tried running "New-ExchangeCertificate -PrivateKeyExportable $True -Services “IMAP, POP, IIS, SMTP” -SubjectName “cn=PASVR01" as I have deleted one of the certicate on this server in past.
  7) Following was the status of internal and external URL.
  [PS] C:\Windows\System32>Get-WebServicesVirtualDirectory | fl
  Name                          : EWS (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://pasvr01/owa/ews/exchange.asmx
  ExternalUrl              : https://exchange. exchange.domain.com /owa/ews/exchange.asmx
  [PS] C:\Windows\System32>Get-OABVirtualDirectory | fl
  Name                          : OAB (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://pasvr01/owa/oab
  ExternalUrl              : https://exchange. exchange.domain.com/owa/oab
  [PS] C:\Windows\System32>Get-UMVirtualDirectory | fl
  Name                          : UnifiedMessaging (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl                   : https://pasvr01/owa/unifiedmessaging/service.asmx
  ExternalUrl                   : https://exchange. exchange.domain.com/owa/unifiedmessaging/service.asmx
  10) Still we are facing this issue of "The name on the security certificate is invalid or does not match the name of the site" in outlook.
  PLEASE HELP ME TO RESOLVE THIS ISSUE.
  Thanks in Advance,
  Asif

• Exchange 2013 - The name of the security certificate is invalid or does not match the name of the site

  Hi,
  I know this question has been asked a ton of times, but I haven't found any instance of this question asked for exchange 2013.  Yes, I've seen Exchange 2010, Exchange 2007, but not Exchange 2013.  The symptoms are all similar.  Here is a description:
  1 Exchange 2013 server, all roles installed.
  External domain name:  associates.com
  Internal AD domain name:  associates.local
  Client installed a third party SSL certificate, but did not purchase a SAN or UC certificate, so there is one namespace on the SSL cert, and that represents the external OWA name:  mail.associates.com
  Now, when internal OUtlook 2010 clients start, they get the "The name of the security certificate is invalid or does not match the name of the site."
  I'm just wondering if http://support.microsoft.com/kb/940726 still applies to Exchange 2013 to fix this issue.  Does this article apply to Exchange 2013?  If so, I will follow the above
  article.  If not, please direct me to any articles for Exchange 2013 that addresses this.
  the autodiscoverserviceuri points to: 
  https://netbiosnameofmailserver.associates.local/Autodiscover/Autodiscover.xml
  Thanks!
  A

  Yes, the http://support.microsoft.com/kb/940726 still applies to Exchange2013.
  As per my understanding on this post;
  - Poster's Exchange2013 has no SAN certificate.. (usually used for local address like; NETBIOS.Domain.lan).  Be reminded that SSL providers will no longer accepts .LAN or .LOCAL in very near future.
  - By default it uses local url for EWS, Autodiscover, etc.. (if you don't have SAN certificate installed in your CAS server, you would see the certi warning)
  Anyway, I just want to share my case after applying the said work around long time ago (maybe some of you might encounter it as well): my Outlook still showed the certificate warning (I was just keep clicking the YES button).. I was wondering
  that time what was wrong with my virtual directory settings.. until I decided to click "NO" for an answer to that certificate warning message, then voila! it didn't bug me anymore.  Oh by the way, the certificate warning usually give you a hint
  what triggers it like; "autodiscover.Domain.lan" on the first line of message, but in my case it just "NETBIOS.Domain.lan" (didn't make any sense, did it?).. Well, unfortunately I didn't have the chance to figure out what triggered that event.. 

• I have a Black i-phone 5, iOS 7 on a black phone is horrible, there should be a darker setting for black phones... it look horrible on a black phone because it does not match... its too bright... I think there should be a darker option!!

  I have a Black i-phone 5, iOS 7 on a black phone is horrible, there should be a darker setting for black phones... it look horrible on a black phone because it does not match... its too bright... I think there should be a darker option!! Is there going to be a darker option of the software???

      jsavage9621,
  It pains me to hear about your experience with the Home Phone Connect.  This device usually works seamlessly and is a great alternative to a landline phone.  It sounds like we've done our fair share of work on your account here.  I'm going to go ahead and send you a Private Message so that we can access your account and review any open tickets for you.  I look forward to speaking with you.
  TrevorC_VZW
  Follow us on Twitter @VZWSupport

• Exchange 2013 w/Outlook 2013 "The name of the security certificate is invalid or does not match the name of the site"

  I've completed an upgrade from Exchange 2003 to Exchange 2013 and I have one last SSL message that I can't get rid of.  I've installed a 3rd party cert that is working great for webmail and cell phone access but for some reason the Outlook 2010/2013
  clients get prompted for a security warning.  I just implemented the SSL cert yesterday and I've noticed that new installs of Outlook seem to work just fine.  My Outlook 2013 client doesn't prompt me with the message but I have other users who are
  still getting the "The name of the security certificate is invalid or does not match the name of the site" error.  The domain on the cert error show up as server.mydomain.local.  I've gone through all the virtual directories and pointed
  all of my internal and external URL's to https://mail.mydomain.com.   This made one of the two warnings go away but not the second.  I've dug around on google and gone through everything I could find here and as far as I can tell my internal
  and external url's are configured properly and I can't figure out where this error is originating from.  Any ideas on where I should look outside of the virtual directories? 
  I'm including a good link I found that contains all of the virtual directories I updated.  I've checked them through both CLI and GUI and everything looks good.
  http://www.mustbegeek.com/configure-external-and-internal-url-in-exchange-2013/
  http://jaworskiblog.com/2013/04/13/setting-internal-and-external-urls-in-exchange-2013/

  Hi,
  When the Outlook connect to Exchange 2013/Exchange 2010, the client would connect to Autodiscover service to retrieve Exchange service automatically from server side. This feature is not available in Exchange 2003 Outlook profile.
  Generally, when mailbox is moved to Exchange 2013, the Outlook would connect to server to automatically update these information. It needs time to detect and update the changes in server side. I suggest we can do the following setting For autodiscover service:
  Get-ClientAccessServer | Set-ClientAccessServer –AutodiscoverServiceInternalUri https://mail.mydomain.com/autodiscover/autodiscover.xml
  Please restart IIS service by running IISReset in a Command Prompt window after all configuraions.
  Regards,
  Winnie Liang
  TechNet Community Support

• Exchange 2010 - The name on the security certificate is invalid or does not match the name of the site

  Scenario - Two Domains in different forests in production
  Domain ABC.com - Contains Exchange Server 2010 + Windows 2008 R2 AD Domain controllers
  Domain XYZ.com - Windows 2008 R2 Domain controllers + Contains all users + Desktop compuer accounts.
  User logs in to the domain XYZ.com from a desktop and he configures outlook using the user ID in  domain ABC.com.
  When he opens Outlook it is getting connected and he gets an error message pop -up saying 'The name on the security 
  certificate is invalid or does not match the name of the site'
  I am using an external certificate from Thawte for autodiscover.ABC.com & webmail.ABC.com
  I read about one solution provided in MS KB article - http://support.microsoft.com/kb/2772058 
  But in my scenarion there are two domain involved. Pls guide how to clear this.
   

  Hi,
  How about logon [email protected] on ABC domain via OWA?
  If OWA works well, it seems and issue on the Autodiscover side.
  Please run "Test E-mail AutoConfiguration" on Outlook to check whether this issue caused by Certificate Mismatch.
  1.
  Firstly make sure how many host name in your certificate the certificate. Run “Get-ExchangeCertificate | select certificatedomain”.
  2.
  Secondly, check the web services URLs which Outlook are trying to connect to. Run “Test Email AutoConfiguration”.
  3.
  In this scenario, you need to check the host name for the following services:
  Autodiscover, EWS, OAB, ECP, UM
  4.
  If any of the urls above does not match the one in the certificate, refer to the following article to change it via EMS:
  http://support.microsoft.com/kb/940726 
  More details to see following FAQ on "Checklist for Exchange Certificate issues":
  http://social.technet.microsoft.com/Forums/en-US/fa78799b-5c55-4c71-973b-0e186612ff6f/checklist-for-exchange-certificate-issues?forum=exchangesvrgeneral
  Thanks
  Mavis Huang
  TechNet Community Support

• Exchange 2013/2007 coexistence: The Name on the Security Certificate is Invalid or Does Not Match the Name of the Site.

  In the midst of Exchange 2013/2007 coexistence configuration. 
  Currently:
  Exchange 2007:
  2 CAS\HUB
  1 Mailbox server
  Exchange 2013 (2 sites):
  LA:
  1 CAS
  2 MBX servers
  MKE:
  1 CAS 
  2 MBX servers.
  We purchased a certificate from Digicert and added every SAN name we could think of including "legacy.companyname.com", just to be sure. Added certificate to Exchange 2013 CAS servers and 2007 CAS\HUB boxes. Configured virtual directories on Exchange
  2013 MKE-CAS01 but not on Exchange 2013 LA-CAS01. Configured virtual directories to on Exchange 2007 CAS\HUB to point to "legacy.companyname.com". 
  Mailboxes have not been moved yet. I just wanted to get the coexistence between Exchange 2013/2007 up first but some users (not all) receiving
  "The name of the security certificate is invalid or does not match the name of the site" for
  "LEGACY.COMPANYNAME.COM". I remember configuring the AUTODISCOVER virtual directory for Exchange 2007. Any ideas? Thank you.

  Hi,
  Please make sure that the certificate with "legacy.companyname.com" name is enabled for IIS service. We can check it by running the following command in Exchange server 2007:
  Get-ExchangeCertificate | FL
  Thanks,
  Winnie Liang
  TechNet Community Support

• The name on the security certificate is invalid or does not match the name of the site

  Hi Guys,
  Every time when we login to SAP Business One, we are getting two identical security Alerts, that we needs to click "Yes" twice.
  Text of error: “The name on the security certificate is invalid or does not match the name of the site”
  We tried to install certificate, but it is not solved this certificate issue and the alert still pops up on login.
  I guess, something wrong with dashboard settings, but don't really know what exact and how to fix it.
  Thanks,
  Sergey

  Hi,
  Please check SAP note:
  1810486 - Dashboard Certificate Sercurity Alert appears on every
  logon to Business One
  Thanks & Regards,
  Nagarajan

• The name on the security certificate is invalid or does not match the name of the site" : IE

  Hi All,
  All clients are getting “the name on the security certificate is invalid or does not match the name of the
  site” when its reboot and try to access website.
  I don’t have idea about certificate authority. Can anyone help on how I start troubleshooting this.
  Is there any group policy setting which resolve this issue.
  Please suggest what parameter I have to check. 

  > All clients are getting “the name on the security certificate is invalid
  > or does not match the name of the site” when its reboot and try to access website.
  "View Certificate" should tell you.
  Greetings/Grüße,
  Martin
  Mal ein
  gutes Buch über GPOs lesen?
  Good or bad GPOs? - my blog…
  And if IT bothers me -
  coke bottle design refreshment (-:

• The Dreamweaver client version does not match this version of the BrowserLab client

  Cannot use BrowserLab
  I have followed the upgrade instructions on this page
  http://labs.adobe.com/downloads/browserlab.html
  Deleted the MeerMeerDW folder, downloaded and installed the latest MXP files.
  But when I try to use BrowserLab from Dreamweaver after program loads error message says
  "The Dreamweaver client version does not match this version of the BrowserLab client.
  Please download and install the latest version of the Dreamweaver MXPs"
  I have tried several times, even tried removing the extensions from Extension Manager, quiting the program,
  deleting the MeerMeerDW folder, restarting Extension Manager and reinstalling the MXPs, then starting Dreamweaver
  and trying the Preview in Browser>Adobe BrowserLab. Same problem, program loads and then get error message.
  Macintosh OS 10.5.8
  Dreamweaver CS4
  Extension Manager CS4 (2.1.115)

  Hello toni7,
  I'm sorry to hear you're having problems. Are you prompted to replace the existing extensions when performing the installation? The error message you are receiving when using the service is expected if the new versions of the extensions are not installed.
  What is the version number of the extensions displayed in Extension Manager?
  Are you deleting the MeerMeerDW folder in the user library prior to installing the new version of the extensions? And just to be sure, are you logged in as the same user? [(user)\Library\Application Support\Adobe\CS4ServiceManager\extensions\MeerMeerDW]
  Do you have more than one MeerMeerDW folder at the path above?
  Also, be sure that all adobe applications are closed before trying to install the new extensions. I would also make sure that CS4ServiceManager, Extension Manager and Dreamweaver are not running when you delete the MeerMeerDW folder and prior to installing the updated extensions. Go to Applications\Utilities\Activity Monitor and Quit Process on any of those three running prior to installing.
  It's critical that the MeerMeerDW folder is manually deleted, rather than removed using Extension Manager before updating the extensions.
  Best regards,
  Corey

• The name on the security certificate is invalid or does not match the name of the site exchange 2010

  We did an update to SP1 to SP3 for Exchange 2010 over the weekend and now I am seeing the following errors.
  "The name on the security certificate is invalid or does not match the name of the site"
  Any ideas why an update would effect this. I have looked at the names and everything seems to match up.

  Hi,
  Does the issue happen to all users? If it is, please run the following command to check your certificate configuration:
  Get-ExchangeCertificate | fl
  Generally, the certificate mismatch issue is caused by the name in URLs doesn't match the certificate names with IIS service. Please make sure all URLs that used to connect Exchange from internal and external should match the certificate names with proper
  services.
  http://support.microsoft.com/kb/940726
  Best Regards,
  Winnie Liang
  TechNet Community Support

• Outlook: The name of the security certificate is invalid or does not match the name of the site

  Hey guys,
  We have setup autodiscover redirection properly (I guessed) by:
  Creating a CNAME from
  AliasName: autodiscover.tenant-domain.com TO
  PrimaryName: autodiscoverredirection.hostname.com.
  Then doing a re-direction to https autodiscover service.
  All seems to be working properly, however, when I open Outlook, it still shows the pop out saying "autodiscover.tenant-domain.com - The name of the security certificate is invalid or does not match the name of the site".
  The autodiscover redirection is indeed working properly, that's why the autodiscover is working, however it is still trying to match autodiscover.tenant-domain.com to the certitifcate instead of matching the re-directed url, which is autodiscover.hostname.com.
  Could anyone advise what is wrong? Or anyone who knows how to correct it can contact me? :)
  Jackson Yap APC Hosting http://www.apc.sg/

  Hi Jason, Well, if it is doing that, it is most likely beccause your autodiscoverredirection.hostname.com also respond to port 443/SSL. So, what you need to do is to make sure that specific IP isn't responding to 443. The reason is this, 1. You first hit
  https://autodiscover.tenant-domain.com, which this is a CNAME to autodiscoverredirection.hostname.com. So, if autodiscoverredirection.hostname.com respond to 443, it will then give you an error. If it doesn, it will then move on to perform redirection right
  away and you will not get that prompt.Regards, Kip Ng - http://blogs.technet.com/b/provtest/