CA issue - Workstation signin "There was a problem verifying the certificate from the server"
Hi,
We have issues with all workstations on our domain. I just recently setup Lync 2013 server on a windows 2012 OS. When I went to test sign-in, I received a message "There was
a problem verifying the certificate from the server". To fix this issue, I had to download the cert and import it into Trust Root Certification Authorities on the local workstation. This will be impossible if I have to do this for multiple machines.
Is there a way around this? Why is it asking to do this?
Thanks guys, much appreciated.
MM
You can follow the instructions here to use Group Policy to install your root certificate to all your workstations.
Or you could re-deploy your CA as an Enterprise CA.
Hi Georg,
Thank you for your reply.
I did deploy my CA as an Enterprise CA..... Not sure why its still asking me to install on workstations?
How can I confirm its an Enterprise CA?
Thanks,
MM
Similar Messages
-
Lync 2010 Certificate Issue - "There was a problem verifying your certificate from the server"
Greetings.
My Issue:
Lync 2010 client does not connect to server;error displayed "Cannot sign into Lync. There was a problem verifying the certificate from the server."
Description:
The client is running on my Windows 7 box, and my CA server is a Windows Server 2003 box. I have installed the hotfix on the Server 2003 box to update the Web Enrollment portion of CA to allow for newer clients (Vista and 7) to receive certificates from
this server.
Lync server is running on Server 2008 R2 STD, installation was a success.
The Windows 7 box is a part of the domain.
I have manually exported the Root CA from my Enterprise CA server from
Trusted Root Certification Authorities -> Certificates and imported into the same location on my Windows 7 box.
If I look at the certification path on the Root CA, on my Windows 7 box, it says "The certificate is OK." The same goes for the servers involved.
Still nothing.
I have read the other forum posts on here about people having success once they manually import the Root CA from the Enterprise CA server, but this is not my case here.
All certificates are successfully assigned on the Lync server box; however, I did have to manually import the Root CA into Lync server's
Trusted Root Certification Authorities -> Certificates before I could successfully assign them. Had to do this on another deployment I completed, so I didn't think anything of it.
To recap: it seems that even with my Root CA imported into my Windows 7 box I can still not connect to my Lync server with the client, and I get the error message "There was a problem verifying the certificate from the server."Solved
Solution : Export certificate from Lync Server Start > Administrative Tools > IIS > Server Certificate > Export > abc.pfx save it, Copy and place the certificate where Ms Lync 2010 client is installed or getting certificate
error. Follow these steps on client machine to install certificate
Run > mmc > add or remove snap in > certificates > computer account > local computer >finish > ok > expand Certificate > Trusted Root Certification Authorities > Certificate > All task > Import > copy abc.pfx certificate
and delete unnecessary certificate from there.
Restart Client machine and open microsoft Lync client 2010 and open option menu > Personal > Advanced > choose Auto Configuration > save ok -
Error message: There was a problem connecting to MobilMe. The request timed out.
I've never had an account with MobilMe. MobilMe is not listed as an account in iPhoto. All software on iMac is up to date. I'm running OSX 10.6.8. While working in iPhoto, editing or trying to upload photos to FaceBook from iPhoto I get the error message: There was a problem connecting to MobileMe. The request has timed out.
For some reason iPhoto wants to communicate with MobilMe, even though I've never had an account.
I worked with ExpressLane (case # 231899367) thinking it was a MobilMe issue). It was a dead end. Any suggestions to remedy this annoyance would be appreciated. Thanks. ILIJA.Strange, I got this error for the first time last night. I have a 27" iMac (late 2010 model); with latest Aperture. I recently added a Flickr account (have had a Facebook account on there for some time). I was uploading some to my flickr account, and noticed that even though the "use actual size" setting was used, it was uploading tiny thumbnails and not the full version.
It was after this, that I got that error. I haven't tried it again, as I'm now on my macbook at work. Will try again tonight.
I've also, NEVER had a .mac account, so no possibility of it being a legacy account. -
PPoint OWA there was a problem verifying the certificate
Hi, I installed Lync 2013 FE, edge and ARR. Recently, with your help, I finally made it work for web based meetings. People have A/V/Whiteboard/ but they are unable to use Share screens and PPoint.
I read that I need Office Web Application Server in order to make PPoint work so I followed online tutorial and installed it. As a certificate I at first used self signed but later as I added owa as SAN, I exported it from edge server and imported it in
OWA Server. I am not sure if this is the way to do that.
Error for share screen is that it is due to the network issues,
Error for PPoint is "There was a problem verifying the certificate". Remote user use web browser in order to access meeting, upload the file without any problem, and it says Loading ..... , on the other side I have domain machine with lync client
that receives notification to accept meeting content, after which error appears.
Any ideas?Hi all and thanks for your reply.
I used this command to create farm (didn't define internal fqdn)
New-OfficeWebAppsFarm -ExternalURL https://lynweb.domain.com -CertificateName "ExternalCert"
Everything went smoothly, I can access
https://owa.domain.local/hosting/discovery (but cert is shown as unsecured since url is not the same as in cert (Lyncweb.domain.com).
Because I have split DNS, in my DNS I created lyncweb for the domain.com CNAME entry and I can successfully open https://lyncweb.domain.com/hosting/discovery form LAN.
I found several mistakes in my config (at least I think so):
1. In LyncFE I had under discoveryURL domain.local path, so this is why cert error was showing. It was able to access but because of the different URLs name that didn't match certificate name, I was getting an ssl error. - I changed it to lyncweb.domain.com/.....
2. I didn't have external DNS name for lyncweb.domain.com. In fiddler I saw that it is trying to access to this URL and since it wasn't defined- therefor not able to access. - I created A host record.
3. Firewall, since lyncweb was defined in ARR I needed to craete FW rule to let access OWA Server. - I added FW rule.
Current situation is this:
-- When I access through meeting.domain.com/Lync Client and start PPoint, on the remote client (teleworker where I started PPoint) presentation pops up on teleworker, I can go through the slides, but inside the LAN (second participant) on Lync Client or
via meet.domain.com I am just getting "Loading ...." and nothing appears. (I tried disabling Firewall but didn't help - so it is not about firewall, especially since OWA and LyncCLient are in the same subnet)
-- On the other hand when teleworker starts presentation and guest joins (both outside LAN), both can see presentation.
I thought that it is because I didn't have internal URL, so I added
-InternalURL: https://lyncweb.domain.com
Now I have both internal and external URL that is the same. But it didn't change the situation.
Any suggestions? -
I am trying to update my phone so I can save my info on my old phone & get a new phone, but I get a error that says "There was a problem with downloading teh software, the network connection timed out.." HELP! Not sure what my settings shoud be...
I never updated anything until now...I want o update my iPhone to the newest version, but i do not want ot loose all that I have on this phone. I was told I needed to update the operating systems so i can put things into the cloud for transport to new phone, but I am just not sure how to do this..Can you help out here??Dear Jody..jone5
Good for you that can't update your iphone because I did it and my iphone dosen't work for example I can't download any app like Wecaht or Twitter..
Goodluck
Atousa -
While logon to lync it gives error " there was a problem verifying the certificate from the server "
i already go through all threads related to my question. but not even one thread is satisfying my question ok my problem is again the same it gives me error as i mentioned in title. client OS is XP. actually can somebody tell me which certificate
i should import in which name of certificate group.
N ya why error has occur. help me
thanks in advance
jayesh rohitYou'll want the CS root certificate in the trusted root certificate authorities area of the machine store (vs the user store). If there are any subordinate CAs with intermediate certificates, put them in the intermediate certification authorities area.
Verify that the certificate has the correct SANs for you server. Did you generate the certificate from the deployment wizard, did you check the box for the sip domains as you went through the wizard? Is the certificate internally signed by your
certificate authority? Are you attempting to connect internally or externally when you see the issue?
Can you confirm that your SRV records for _sipinternaltls._tcp.domain.com have the correct port and hostname and that the hostname is also resolvable? Can you do the same for _sip._tls.domain.com?
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
SWC Unified Communications -
every time i try to update my ipod to the latest version of ipod software i keep gettint the error message "there was a problem downloading ipod software. The network connection timed out"
Most of the times your security software is the cause for the network time out: iTunes for Windows: Troubleshooting security software issues
-
Am trying to update to 5.0 from 4.2.1 and keep getting an error message "There was a problem downloading for iphone. The network timed out. What do I do ?
This is asked and answered many times each day. The forum search bar is on the right side of this page.
Disable your firewall/security software and try again. -
Hi,
I Build an Lync 2013 set up with FEpool, Director pool and Exchange server is integrated. I have windows 8 client machine, with Lync client installed. When I try to login to the lync client, I am getting error like"There was a problem verifying
certificate from the server".
When I installed ROOT CA cert manually on client machine I am able to login to the lync client. similarly if I add my client machine in my domain, I am able to login to the Lync client.
Now is there any other way to send the certificate automatically to the client machine (Which are NOT part of the DOMAIN) from the server, instead of manual installation process.
Please help me troubleshoot this problemAgree with S Guna, there is no easy way to push a certificate automatically to a client that you don't control other than building an installer package and asking them to run it. In this situation, if there are a lot of non-domain joined machines
a third party certificate is the way you need to go.
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
SWC Unified Communications -
When I try to share a project to theater I get the message Your Theater could not be opened.There was a problem reading your movies from iCloud and the project does not share. Can anyone help?
Set up iMovie Theater and iCloud
In order to take full advantage of the capabilities of iMovie Theater, you must be signed in to iCloud. If you are signed in to iCloud, movies and trailers shared to iMovie Theater are automatically uploaded to iCloud. You can also turn off automatic uploading, and upload just the movies and trailers you want, or delete individual movies and trailers from iCloud. For more information about the Theater, see iMovie Theater overview.
If you sign out of your iCloud account on your Mac, all iCloud movies disappear from the Theater, but they are not deleted; the movies reappear when you sign in again. If you ever run out of space in iCloud, an alert icon appears in the top-right corner of your movie, indicating that you can’t upload new movies. For more information, click the icon. After you upgrade your iCloud storage or clear space, your movies automatically appear in iCloud again.
Hide
Set up automatic iCloud uploading
Choose Apple menu > System Preferences, and click iCloud.
Make sure you’re signed in, and then select the Documents & Data checkbox.
Click the Options button next to Documents & Data.
Make sure the iMovie checkbox is selected.
In iMovie, choose iMovie > Preferences.
Select the “Automatically upload content to iCloud” checkbox.
To turn off automatic uploading, deselect the checkbox. -
I am trying to download updates for some Free apps. The app update starts to download but before finishing, I get a pop-up message "There was a problem downloading 'APP NAME'. The network connection was reset."
A couple of App updates downloaded successfully. Some don't. What do I need to do/change to get a download to finish so I can get all my app updates?iTunes: How to resume interrupted iTunes Store downloads
http://support.apple.com/kb/HT1725 -
There was a problem verifying the certificate from the server
i can not sign in to my lync server in client user and the error message is "There was a problem verifying the certificate from the server".
i can sign in in my lync server by any account but i can not sign in in other pc clients.Hi,there,
Just some additional info...
Please go through the following old threads with the same error message
http://social.technet.microsoft.com/Forums/en-US/ocscertificates/thread/19d74620-9ea8-4f19-bc01-25387e4ee380/
http://social.technet.microsoft.com/Forums/en-US/ocscertificates/thread/7a973094-6cd1-4f3f-9af0-6d330a9b8428
http://social.technet.microsoft.com/Forums/en-US/ocscertificates/thread/4034e791-6c3c-4c35-b936-bca734204fd4/
Hope these helpful!
B/R
Sharon
Sharon Shen
TechNet Community Support
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. -
I have gone through multiple forums and just about everyone states install the Root CA on the machine trying to connect.
I have installed the Root CA on this machine as it is not on the domain and is not inside the domain. It is installed in the Trusted Root CA folder.
I run the test connectivity microsoft tester and this is what i receive:
Testing remote connectivity to Microsoft Lync server through the Lync Access Edge server sip.netrixit.com on port 5061 to verify user [email protected] can connect remotely.
Specified remote connectivity test(s) to Microsoft Lync server failed. See details below for specific failure reasons.
<label for="testSelectWizard_ctl12_ctl06_ctl03_tmmArrow">Tell
me more about this issue and how to resolve it</label>
Additional Details
Couldn't sign in. Error: Error Message: Unknown error (0x80131500).
Error Type: TlsFailureException
Any insight would be helpful.Here is certificate you have your edge server external interface for sip.netrixit.com
Common name: *.netrixit.com
SANs: *.netrixit.com, netrixit.com
Valid from January 30, 2014 to January 30, 2015
Issuer: Go Daddy Secure Certification Authority
As per Wildcard certificate support in Lync Server 2013
http://technet.microsoft.com/en-us/library/hh202161.aspx
Server roles that are not support for WildCard Certificate
Internal server roles (including, but not limited to the Mediation Server, Archiving and Monitoring Server, Survivable Branch Appliance, or Survivable Branch Server)
External Edge Server interfaces
Internal Edge Server
Please change the certificate on edge server external interface
Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer"
Regards Edwin Anthony Joseph -
Office Communicator 2007 "There was a problem verifying the certificate from the server" issue
Hello,
Last Friday is when this error first started. This is effecting all users. I am new to this position and am unfamiliar with how the Communicator server is setup. I am unsure as to where to look and where to start. We are using Office Communicator 2007 R2
running on a VM with Server 2003 R2. This is the only application being used on this host. Any ideas on where to start looking?
Thanks for the helpHi Jenebo,
Looks like you did not install the CA install your client PC.
Access you enterprise CA server, like
http://dc.server.com/certsrv, download the certificate chain and intall it.
If it still can not work, please check you use automatic configuration to login your ocs client and you can resolve the SRV record to correct srv hostname using Nslookup.
If you use manual configuration, please do not use IP address of of FE.
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
I issued a certificate off of the server running OC 2007; I do not have a dedicated CA server. How would I pull the crtificate off of that server and install it on my clients (server name is SFBlackberry)?
By the way, half of the clients worked after I renewed the CA on the server and the other half are the ones I am having problems with.
Thanks for your help...as you can tell I am new to OC and really appreciate your help. -
IPad Error" There was a problem saving some data to the devices cache"
We have purchased the app Environmental Science Buddy and there are presentations that can be viewed but I receive the above mentioned error when trying to play them on our school network. Took an iPad home and just as I thought no problem loading the presentations. I have gone through our firewall and its allowing the website that the data is coming from and I even added it to the allow list just to be sure but I am still receiving this message Any help would be greatly appreciated as I have this app on nearly 100 iPads!!!
Hello mjswooosh,
I'm very disheartened to hear that you've had ongoing problems when attempting to order from BestBuy.com. Our goal is ever to provide a fun and efficient shopping environment! Certainly creating aggravation serves neither you nor us and I apologize sincerely for this having been your experience.
We recommend the troubleshooting steps you mentioned (i.e., clearing the browser cache, deleting temporary internet files and cookies) because this is the most common cause of this type of problem. I too have encountered this issue from time to time and these steps have almost always resolved the problem. I say almost always because there's one further step you can try: ensure that you have signed out of BestBuy.com, then perform the browser maintenance steps we've recommended. Afterward, before signing in to BestBuy.com, add your desired items to your cart and sign in as part of the checkout process. When the standard steps have not netted a resolution for me, this has solved the problem each time.
I hope this helps. I'm very grateful that you took the time to write to us with your concerns and for sharing your very valuable feedback about your online experience.
Sincerely,
John|Social Media Specialist | Best Buy® Corporate
Private Message
Maybe you are looking for
-
Any Standard BC report for MB5B tcode report??
Guys, Let me knw if you have any report which is almost near to the report in r/3 which has a TCODE = MB5B. report name is Stock on Posting date.
-
How can I change the background color?
It may seem like a small thing but I am very disappointed with my new Motorola Droid Turbo. I use it at night quite often and so far I can't find a way to get rid of this glaring white background. Contacts, messages, etc all are blinding to look at i
-
How do i delete my old apple id account?
i dont need it and dont want it how do i delete it? thanks.
-
Is there a way to manually change the range to say 0 to 150 degrees Celsius? Or is the range change done in the software programming? Thanks Mark
-
My Dell laptop hard drive crashed after using iCloud photo sharing
Has anyone had PC problems after beginning to use iCloud? I seem to have problems with shared photos on iPhone & PC and with contacts for automobile Bluetooth.