Security Certificate Changes?

Similar Messages

• After upgrading to Firefox 10.0.2 there is no way to proceed to a website with an invalid security certificate. How do you proceed to these websites in the new release? The fault page only has a button that says "Try again."

  Using Firefox 10.0.2 for Mac.
  In trying to proceed to various websites (corporate such as dlnet.delta.com (expired certificate), government such as https://www.homeport.navy.mil/links/owa-navy-links/ ) with "invalid" security certificates, Firefox 10.0.2 does not have a button on the error page to continue on to the website. How can you do this using Firefox 10.0.2? I have not found any settings in Firefox preferences to enable this capability either.
  Thx.

  Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance/Themes).
  *Don't make any changes on the Safe mode start window.
  *https://support.mozilla.org/kb/Safe+Mode
  *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

• There is a problem with the security certificate of the proxy server. Error code 18 and 38.

  Hi All,
  After several hours and a short night of sleep I'm out of ideas and hopefully someone here can help me trying to solve this one. First of all the situation:
  Exchange 2013 on a remote location with a CA-certificate.
  Outlook 2010 and 2013 on different locations, locally installed and on RDS.
  When I open Outlook on my laptop all is fine, no errors, good sync, no problem. But when I open Outlook on our Remote Desktop Servers with Outlook 2013 I'm getting errors like "There is a problem with the security certificate of the proxy server. The
  name on the security certificate is invalid or does not match the name of the site. Outlook is unable to connect to this server. (Error code 18)". Opening Outlook 2010 the message is the same, but the error code now is 38.
  After this Outlook opens and is working, there's one more error though. After a while an security warning pops up with the message: "Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the
  site's security certificate. * The security certificate was issued by a company you have not chosen to trust. View the certificate to determine whether you want to trust the certifying authority. * The security certificate is valid. * The name on the security
  certificate is invalid or does not match the name of the site."
  Strangest thing is, it is the certificate of my RDS! It isn't my valid en officially bought certificate from my mailserver. What's going on? I'm out of options, what I've tried so far (in random order):
  - restarting mailserver and AD;
  - restarting switches;
  - restarting routers;
  - restarting RDS, AD and all other servers;
  - bypassed proxyserver for RDS;
  - created a new profile;
  - checked recently installed updates;
  - checked certificate on mailserver;
  - checked RDS on a different location, working fine.
  Nothing helped, what can I do next? Please advice.
  Regards.

  Found a thread that solves half my problem (https://social.technet.microsoft.com/Forums/office/en-US/70d18244-889a-4d95-ac3f-e234672a82b2/there-is-a-problem-with-the-proxy-servers-security-certificate-error-when-starting-outlook?forum=exchangesvrclients).
  The first message can be suppressed by adding this to the Exchange config:
  set-outlookprovider -Identity EXCH -CertprincipalName msstd:webmail.domain.tld
  set-outlookprovider -Identity EXPR -CertprincipalName msstd:webmail.domain.tld
  Giving the command get-outlookprovider, gives me empty information regarding the certprinipalname. Filled
  this and after recreating the profile or deleting the ost-file I still have the second alert with the local certificate of my RDS.
  Not completely where I want to be, any help regarding the second alert is greatly appreciated!

• Cannot access common websites security certificate not trusted

  I am unable to get to many frequently accessed websites from either Chrome or Safari due to Security Certificate Trust issues. I have been attempting to access Paypal all afternoon without success, as there is no "Proceed anyway" button. I was only able to reach this forum by selecting "Proceed anyway"(!) Other machines on my local network accessing the web via UVerse are not having difficulties, so it seems to be Mavericks specific.

  This solved my problem:
  https://discussions.apple.com/message/18508863#18508863
  I solved this on my wife's computer by resetting the security certificate settings.  This might help others:
  Close all windows.
  Keychain Access ->  click on System Roots on the left, and then click on Certifcates on the bottom left.
  Check to see if any of the certificates on the right have the blue "+" symbol - this means they have custom trust settings.
  There is a bug in changing the policies, so you'll have to change them via the method below.  Changing them just by changing the access to "system defaults" doesn't seem to save.  The method below worked for me.
  Double-click on each certificate with the custom setting (blue "+"), expand the section labled "trust".  Change the "Secure Sockets Layer (SSL)" setting to "no value specified".  Close window - you should be prompted for the password.  Double-click on the certificate again, expand trust, change the "When using this certificate" setting to "Use System Defaults".  Close window, and re-enter password.
  If you didn't re-enter your password upon closing the window, the setting didn't take.  The blue "+" should disappear after a few seconds when it's set back to default.  Once all of the certificates are changed back to default, restart Safari.
  This solved all of the problems for my wife's computer with these issues and OSX 10.7.4
  Message was edited by: Barry Stock

• Window 8.1 update & invalid security certificate errors

  I set up my new PC 2 days ago running Windows 8.1. I was able to visit all websites, including secure ones, w/no issues via Firefox. Last night, suddenly I was unable to access many secure websites. These include Google (Gmail) & Ilines (email). Here is a copy of the Google error:
  "mail.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)"
  There is no button to bypass, as I have seen in the past. I tried deleting cert8.db which didn't resolve anything. I have also tried adding exceptions which also don't resolve the issue.
  I searched support & found the link for the MS document (link below) indicating that FF & Windows Family Safety certificates are not playing nice.
  http://support.microsoft.com/kb/2965142/en-us#appliesto
  I tried to follow the guide, but when I get to step 6, there is no Microsoft Family Safety Certificate in the Trusted Root Certificates Authorities to export. For reference, I do not specifically have Family Safety enabled & am running my PC as admin, no other users. I personally have no use for this but it is my understanding that it cannot be uninstalled, either.
  I have spent hours researching & making adjustments to different settings to no avail. It is frustrating enough setting up a new PC & transferring info w/out this extra hassle. Does anyone have any other suggestions? FF is my preferred browser, but if this can't be resolved I will need to use something else so that I can access these important websites.

  Thanks for the feedback cor-el. Here are the results:
  1. Installed Kaspersky certificate per link= no change
  2. Turned off Kaspersky= able to log in to Gmail but not the other secure sites I am having probs with
  3. Booted in Safe Networking mode= able to log in to Gmail but not the other secure sites. Same blocking errors on Gmail, etc when returned to reg mode.
  Just FYI, I get 2 different secure connection errors:
  Gmail: "mail.google.com uses an invalid security certificate. The certificate is not trusted because the issuer certificate is unknown. (Error code: sec_error_unknown_issuer)"
  Ilines: "Secure Connection Failed An error occurred during a connection to mail.ilines.net. Peer's certificate has an invalid signature. (Error code: sec_error_bad_signature)"

• Exchange 2013 w/Outlook 2013 "The name of the security certificate is invalid or does not match the name of the site"

  I've completed an upgrade from Exchange 2003 to Exchange 2013 and I have one last SSL message that I can't get rid of.  I've installed a 3rd party cert that is working great for webmail and cell phone access but for some reason the Outlook 2010/2013
  clients get prompted for a security warning.  I just implemented the SSL cert yesterday and I've noticed that new installs of Outlook seem to work just fine.  My Outlook 2013 client doesn't prompt me with the message but I have other users who are
  still getting the "The name of the security certificate is invalid or does not match the name of the site" error.  The domain on the cert error show up as server.mydomain.local.  I've gone through all the virtual directories and pointed
  all of my internal and external URL's to https://mail.mydomain.com.   This made one of the two warnings go away but not the second.  I've dug around on google and gone through everything I could find here and as far as I can tell my internal
  and external url's are configured properly and I can't figure out where this error is originating from.  Any ideas on where I should look outside of the virtual directories? 
  I'm including a good link I found that contains all of the virtual directories I updated.  I've checked them through both CLI and GUI and everything looks good.
  http://www.mustbegeek.com/configure-external-and-internal-url-in-exchange-2013/
  http://jaworskiblog.com/2013/04/13/setting-internal-and-external-urls-in-exchange-2013/

  Hi,
  When the Outlook connect to Exchange 2013/Exchange 2010, the client would connect to Autodiscover service to retrieve Exchange service automatically from server side. This feature is not available in Exchange 2003 Outlook profile.
  Generally, when mailbox is moved to Exchange 2013, the Outlook would connect to server to automatically update these information. It needs time to detect and update the changes in server side. I suggest we can do the following setting For autodiscover service:
  Get-ClientAccessServer | Set-ClientAccessServer –AutodiscoverServiceInternalUri https://mail.mydomain.com/autodiscover/autodiscover.xml
  Please restart IIS service by running IISReset in a Command Prompt window after all configuraions.
  Regards,
  Winnie Liang
  TechNet Community Support

• Outlook Security Alert - "the name on the security certificate is invalid or does not match the name of the site"

  Due to our company changing names, we recently moved to a new domain. All users were at first getting a certificate error when opening Outlook "the name on the security certificate is invalid or does not match the name of the site." After our network
  admin made some changes, nobody receives this error anymore except one user. The URL at the top of the security alert is the old domain, mail.olddomain.com. I checked the users Exchange Proxy Settings in Outlook, everything is showing the URL's of the new
  domain so I'm not sure where this is coming from. I'm assuming it has to be something on her local machine since she is the only one who still gets the error.
  Thanks in advance for any help.
  Exchange server 2008
  Outlook 2010

  Hi,
  Please follow all above suggestions to confirm whether the issue happens in OWA. And run Test E-mail AutoConfiguration in Outlook to check whether there is any URL settings using the old domain.
  If the issue doesn’t happen in OWA and your URL configurations are all same as others and set correctly, please create a new Outlook profile to have a try.
  Thanks,
  Winnie Liang
  TechNet Community Support

• Exchange 2010/Outlook 2010 Security Alert (...there is a problem with the site's security certificate.)

  I've been looking to resolve this issue for a while now and was hoping someone could help me understand my options.
  We have Exchange 2010 & Outlook 2010 in our environment. I've created a SSL cert for our ActiveSync from a reputable CA and unfortunately, as you may not be surprised, we are seeing an alert each time we open Outlook that states:
  "Security Alert; Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the site's security certificate.
  The name on the security certificate is invalid or does not match the name of the site."
  Of course my internal server name does not match my external server name. So the SSL I had created for use with OWA and ActiveSync is rejected by my internal Outlook clients.
  After doing some research I believe this is related to the Autodiscover service being configured with my internal server name and not my external name. 
  I've found some info about adding New-AutodiscoverVirtualDirectory and Set-ClientAccessServer commands and then found this article that might help.  (Configure
  Outlook Anywhere to Use Multiple SSL Certificates) but nothing is specific to my configuration and I'm concerned about what will happen to my existing configuration if this fails. 
  What happens when you run Set-ClientAccessServer? Does it retain and keep the old server config in place and add a new one or does it wipe it out? Will all of my devices need to be reconfigured?
  Same with New-AutodiscoverVirtualDirectory.  Does this simply add another virtual directory or is it going to overwrite my existing config?
  Then there is the question of whether or not any of this will actually address my issue at all.
  absolutezero273c

  Sorry.
  "[PS] C:\Windows\system32>Set-ClientAccessServer -Identity MailExt -AutoDiscoverServiceInternalUri "https://MailExt
  .contoso.com/autodiscover/autodiscover.xml"
  The operation couldn't be performed because object 'MailExt' couldn't be found on 'DomainController2.contoso.local'.
      + CategoryInfo          : NotSpecified: (0:Int32) [Set-ClientAccessServer], ManagementObjectNotFoundException
      + FullyQualifiedErrorId : 4D980455,Microsoft.Exchange.Management.SystemConfigurationTasks.SetClientAccessServer"...is the error I get.
  I've created the split zones and populated the Forward Lookup Zones as follows:
  CONTOSO.COM
  MailExt(CNAME)MailInt.contoso.local
  _tcp _autodiscover(SRV)MailExt.contoso.com
  CONTOSO.LOCAL
  MailInt(A)192.168.1.10
  MailExt(CNAME)MailInt.contoso.com
  One thing I did notice is that there isn't a _tcp _autodiscover entry for MailInt in my Forward Lookup Zones.  It was recommended that I make that entry for _tcp _autodiscover(SRV)MailExt.contoso.com in another post I read somewhere.
  I believe what I am trying to do is create a new autodiscover object as is shown here:
  I see there is a Get-ClientAccessServer & Set-ClientAccessServer command but I need to add a CAS. Does the Set-ClientAccessServer add or simply modify?
  Or would that require the New-AutodiscoverVirtualDirectory command? I read
  this page that discussed creating new virtual directories but that seemed a little risky without knowing all the ins and outs of how this service functions and to what degree this would affect the existing configuration.
  I was able to use the Set-ClientAccessServer command and change the actual internal autodiscoverUri to https://MailExt.contoso.com/autodiscover/autodiscover.xml but the name still says MailInt and I continue to get the SSL cert warnings because it is looking
  at MailInt.contoso.local.
  absolutezero273c

• There is a problem with the proxy server's security certificate. The name on the security certificate is invalid or does not match the name of the target site "Mailserver"

  Good day Guys
  First of all I am not an Exchange Expert, and I might be asking a very stupid question, but please bare with me. :) 
  While I was on leave our Mail server fell over and The company got a Specialist to help out for the time being.
  We where\are on Microsoft Exchange 2007 , which Fell over, and the specialist was able to recover as much data as he could.
  They then installed Exchange 2013 and tried to migrate everything from 2007 to 2013 and not everything migrated over.
  But the problem is, Outlook Anywhere was enable on 2007 and worked a 100% (before the disaster)
  With Exchange 2013 I get the following error message when trying to connect With Outlook 2013, using an external connection:
  "There is a problem with the proxy server's security certificate. The name on the security certificate is invalid or does not match the name of the target site "Mailserver"
  Outlook is unable to connect to the Proxy server. (Error Code 0)"
  Has anyone had the Similar when migrating over from 2007 to 2013 or is this an Issue on IIS and nothing to do with Exchange migration?
  Your assistance will be greatly appreciated.

  Hi,
  Firstly, I would suggest we use Exchange 2013 FE as the Outlook Anywhere proxy server.
  For the certificate issue, it mostly occurs because the host name that Outlook are trying to access does not match the certificate SAN. Please check with this point. If they do not match, you
  can change the host name by referring to the following article:
  https://support.microsoft.com/kb/940726/en-us?wa=wsignin1.0
  Thanks,
  Simon Wu
  TechNet Community Support

• Youtube (https)security certificate issue

  Hi
  I'm using latest firefox version with and recently I'm facing this strange issue ... everytime I try to visit youtube, to be specific, when not logged in on any google accounts .. I can visit http://www.youtube.com but when I try to login, in which case it redirects to https:// and It shows the following error(check image url):
  https://imageshack.com/i/ezbe0c53j
  And if I try to add exception, it shows this screen(check image url):
  https://imageshack.com/i/hj41802cj
  (PS: Couldn't find upload option here so I had to use otherimage hosts)
  Also I tried changing windows time, adding auto time sync from windows site and also tried changing profile, disabling add on and testing and also tried removing cache/cookies from both google.com and youtube.com and so far nothing worked ... I can't seem to access youtube while logged in (https)
  Also its only youtube, no other website shows this security certificate error!
  please provide a solution to this asap, thanks!

  When you click Add Exception, you get a Google error page instead of a pop-up dialog? Or are you saying that after you added the exception, YouTube's home page won't load. That's mildly suspicious...
  If you return to the Add Exception dialog and use the View button, how does the certificate compare with the attached screen shot?

• Internet Security Warning - The Server you are connected to is using security certificate that...

  Mail Client on Laptop is Windows Live Mail.  Mail server outgoing.yahoo.verizon.net.  DSL Internet.  Long time Verizon customer.  Client configuration settings correct according to Verizon.  I now get an Interenet Security Warning message whenever I start up the Live Mail Client and send an e-mail.  Only happens on sending e-mails.  The warning message comes back looking for a YES or NO answer.  The message is
  "The server you are connected to is using a security certificate that could not be verified."
  "A certificate chain processed, but terminated in a root certificate which is not trused by the trust provider."
  "Do you want to continue using the server?"      "YES    or   NO"
  I click YES in order to successfully send e-mail messages which I do not like to do.  I only have to press YES on the first e-mail message that I send.  The rest outgoing e-mail work correctly after that first one. 
  What has Verizonn done to cause the problem on my client software?  I have done nothing to change configurations on my Windows 7 and Windos Live Mail laptop.  I have done some research, and verified that my computer time and time zone is correct.  I am looking for an explanation on why this is happening from Verizon. 
  HELP!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

  If no one has a better idea you may want to unlink Yahoo from VZ. http://forums.verizon.com/t5/Verizon-net-Email/Unlinking-Verizon-email-from-Yahoo-portal/td-p/413475 It is possible to lose data as pointed out in the linked thread.
  OR Did you get any indication that your mail server settings were going to change at the end of Sept 2013? A mass email went out for "standard" verizon users earlier this year.  I am not sure if this effects Yahoo/VZ settings.
  If a forum member gives an answer you like, please give them the Kudos they deserve. If a member gives you the answer to your question, mark the answer as Accepted Solution so others can see the solution to the problem. Thanks !!!
  http://forums.verizon.com/t5/Verizon-net-Email/Fix-for-Missing-Inbox-sent-folders-etc-with-Internet-Explorer-11/m-p/647399

• Fix Bollixed security certificate setting for facebook?

  Hi, running ff 15.0.1 on winXP sp2:
  After months of using 'restart my computer' as a workaround for the "untrusted connection" error message that occasionally blocks all facebook access, I got disgusted a few days ago and tried to create an exception in the 'security certificates' dialog, but I was over my head and messed it up...
  ...I thought I was trying to create a blanket exception for www.facebook.com, but what i ended up with was FF REMOVING www.facebook.com from every FB url, so that when I tried to go to, say, www.facebook.com/my.name, I got an "Invalid URL" message stating that "The requested URL "/my.name", is invalid." :-(
  after struggling to figure out how to fix this by searching the forums, I found a recommendation to use 'clear recent history' to undo my mistake: I cleared the previous hour, and voila! problem solved, yay!
  alas, returning home from a weekend trip several days later, after browsing FB for about 30 minutes the problem has recurred, and 'clear recent history' doesn't solve it... I don't want to 'reset firefox' for various reasons. The thread at http://support.mozilla.org/en-US/questions/878694?s=clear+security+certificate+settings&r=7&as=s seems to offer a possible path to a solution but I'm having trouble sorting out the terms... is there a simple way to do something like 'revert to default security settings', or just find where my bad change is stored and reset or delete it? It seems like it should be a really straightforward 'undo' operation but I'm stymied, and don't want to mess things up even more: I have a lot of work going on in open facebook tabs and it would be a little tragic to lose it... any help? Thanks in advance!
  -kc

  I appreciate the educational links, Cor-el, but they seem like unsatisfying workarounds that disable key features of FF and/or FB without actually addressing my question, which was:
  "is there a simple way to do something like 'revert to default security-certificate settings', or just find where my bad change is stored and reset or delete it?" [without doing a "Reset FireFox"]
  ...the problem 'went away by itself' within an hour, but has recurred twice since then (for brief periods)
  Cor-el, I use autocomplete-url as a regular part of my navigation, and I LIKE having a secure connection to facebook, so I don't want to use these workarounds that disable key features of FF and don't actually address the 'wierd behavior'. Since I see that you're a big contributor in this forum, I'm guessing the fact that you offer no better suggestion than this may mean that we're looking at a bug or at least a major glitch. I acknowledge that this COULD be a FB issue, or even a "User is an idiot" issue, but I'm pretty sure it's a fouled path to re-edit my FF security-certificate settings.
  If anyone cares to review the original post and try again, I'll appreciate it. I consider this ticket still open :-)
  Thanks for all you do,
  -kc

• "Name on the Security Certificate is Invalid or Does not Match..." using Outlok 2007 w/ Exchange 2007

  Good afternoon!
  We just completed our Exchange 2007 implementation (migration from Exchange 2003... a fun romp of 24 straight hours for the final push) and noticed an error that only occurs on Outlook 2007 clients connecting to the Exchange 2007 server: "Name on the Security Certificate is Invalid or Does Not Match the Name on the Certificate".
  Now, I've done my reading into this and have determined that due to how Outlook 2007 clients managed their OAB, it is essentially through a web virtual directory now, no longer through Public Folders and this is essentially the base of our issue. See, our mail server has an internal FQDN of mail.ourdomain-domain.com whereas it has an external FQDN (which is what the SSL Cert is tied to) of owa.ourdomain.com.
  So, essentially what I'm seeing is our internal Outlook 2007 clients (limited to I.S. employees only right now, thankfully) are seeing this SSL error because Outlook 2007 is trying to pick up the OAB using the internal FQDN instead of the external FQDN (which would work as well, due to some internal DNS trickery we have configured).
  My question is (finally), is there a way to circumvent this internally so we never see this SSL error prompt or a way to force Outlook 2007 to use the external FQDN? I have made sure all the settings in Exchange Management Console for OAB and the like have both the internal and external FQDN set to owa.ourdomain.com (the valid SSL name), but it does not appear to have made a difference. Granted, I have not rebooted... but I do not think that is necessary in this instance.
  Any suggestions would be appreciated. Thanks!!

  Hi All,
  1) I am using Windows SBS Server 2008 with Exchange 2007 installed on it. With all the Certicate configured internally. We haven’t purchased the Certificate from any outside authority yet.
  2) Also, user were getting Error message "The name on the security certificate is invalid or does not match the name of the site" in outlook, to resolve this issue I followed the steps mention on "http://support.microsoft.com/kb/940726" &  “http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/697f79e2-ca8f-4a2e-bae5-55d3fa7f703f/?prof=required” however I was able run only first command as I was unable to find "EWS (Default Web Site)", "oab (Default Web Site)", "unifiedmessaging (Default Web Site)".
  3) After reaserching, I run following commands to get the status, location of WebServicesVirtualDirectory, OABVirtualDirectory & UMVirtualDirectory
  [PS] C:\Windows\System32>Get-WebServicesVirtualDirectory | fl
  Name                          : EWS (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/EWS/Exchange.asmx
  ExternalUrl              :
  [PS] C:\Windows\System32>Get-OABVirtualDirectory | fl
  Name                          : OAB (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/OAB
  ExternalUrl              :
  [PS] C:\Windows\System32>Get-UMVirtualDirectory | fl
  Name                          : UnifiedMessaging (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://sites/UnifiedMessaging/Service.asmx
  ExternalUrl               :
  4) Then after getting the correct locations of all the directory I run the following commands to change the internal url on existing Certs
  Set-ClientAccessServer -Identity PASVR01 -AutodiscoverServiceInternalUri https://pasvr01/owa/autodiscover/autodiscover.xml
  Set-WebServicesVirtualDirectory -Identity "PASVR01\EWS (SBS Web Applications)" -InternalUrl https://pasvr01/owa/ews/exchange.asmx
  Set-OABVirtualDirectory -Identity "PASVR01\OAB (SBS Web Applications)" -InternalUrl https://pasvr01/owa/oab
  Set-UMVirtualDirectory -Identity "PASVR01\UnifiedMessaging (SBS Web Applications)" -InternalUrl https://pasvr01/owa/unifiedmessaging/service.asmx
  5) However, this does'nt resolved our issue so run the following commands to change the external url on existing Certs
  Set-WebServicesVirtualDirectory -Identity "PASVR01\EWS (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/ews/exchange.asmx
  Set-OABVirtualDirectory -Identity "PASVR01\OAB (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/oab
  Set-UMVirtualDirectory -Identity "PASVR01\UnifiedMessaging (SBS Web Applications)" -ExternalUrl https://exchange.domain.com/owa/unifiedmessaging/service.asmx
  6) I also tried running "New-ExchangeCertificate -PrivateKeyExportable $True -Services “IMAP, POP, IIS, SMTP” -SubjectName “cn=PASVR01" as I have deleted one of the certicate on this server in past.
  7) Following was the status of internal and external URL.
  [PS] C:\Windows\System32>Get-WebServicesVirtualDirectory | fl
  Name                          : EWS (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://pasvr01/owa/ews/exchange.asmx
  ExternalUrl              : https://exchange. exchange.domain.com /owa/ews/exchange.asmx
  [PS] C:\Windows\System32>Get-OABVirtualDirectory | fl
  Name                          : OAB (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl               : https://pasvr01/owa/oab
  ExternalUrl              : https://exchange. exchange.domain.com/owa/oab
  [PS] C:\Windows\System32>Get-UMVirtualDirectory | fl
  Name                          : UnifiedMessaging (SBS Web Applications)
  Server                        : PASVR01
  InternalUrl                   : https://pasvr01/owa/unifiedmessaging/service.asmx
  ExternalUrl                   : https://exchange. exchange.domain.com/owa/unifiedmessaging/service.asmx
  10) Still we are facing this issue of "The name on the security certificate is invalid or does not match the name of the site" in outlook.
  PLEASE HELP ME TO RESOLVE THIS ISSUE.
  Thanks in Advance,
  Asif

• Driver Security Certificate Expiration Issue on Windows Server 2008

  Hi,
  We want to install Oracle Database 10g Release 2 RAC (10.2.0.4.0) Enterprise for Microsoft Windows Server 2008 x64. When installing Oracle Cluster Ready Services on Windows Server 2008, the prerequisite check fails with the following message:
  "Security certificates for OCFS and Orafence drivers on Windows Server 2008 have expired"
  Can somebody please point a download location from Metalink from where we can download the latest drivers?

  Hi Satish,
  thank you for your reply. I also found this bug on metalink and did as they wrote there (change the date before 2009). It worked, pre requirments assistant is now ok, but after setting private/public interfaces section it fails with error message:
  "Unable to collect and verify hardware information on all nodes" ...
  This is the same error I got in 11g as well, because I already had a post yesterday about this bug in this section :(
  The strange thing is that now cluster verification passes the system architecture check for (10.2.0.4), but it fails during the installation of CRS.
  We are already have an SR with Metalink, but unfortunately they are not much of a help :(
  D:\10204_vista_w2k8_x64_production_crs\clusterware\cluvfy>runcluvfy stage -pre crsinst
  -n rac1,rac2 -verbose
  Performing pre-checks for cluster services setup
  Checking node reachability...
  Check: Node reachability from node "RAC1"
  Destination Node Reachable?
  rac2 yes
  rac1 yes
  Result: Node reachability check passed from node "RAC1".
  Checking user equivalence...
  Check: User equivalence for user "Administrator"
  Node Name Comment
  rac2 passed
  rac1 passed
  Result: User equivalence check passed for user "Administrator".
  Checking administrative privileges...
  Checking node connectivity...
  Interface information for node "rac2"
  Interface Name IP Address Subnet
  PublicLAN 172.17.10.23 172.17.10.0
  PublicLAN 172.17.10.201 172.17.10.0
  PrivateLAN 192.168.10.21 192.168.10.0
  Interface information for node "rac1"
  Interface Name IP Address Subnet
  PublicLAN 172.17.10.22 172.17.10.0
  PublicLAN 172.17.10.200 172.17.10.0
  PrivateLAN 192.168.10.11 192.168.10.0
  Check: Node connectivity of subnet "172.17.10.0"
  Source Destination Connected?
  rac2:PublicLAN rac2:PublicLAN yes
  rac2:PublicLAN rac1:PublicLAN yes
  rac2:PublicLAN rac1:PublicLAN yes
  rac2:PublicLAN rac1:PublicLAN yes
  rac2:PublicLAN rac1:PublicLAN yes
  rac1:PublicLAN rac1:PublicLAN yes
  Result: Node connectivity check passed for subnet "172.17.10.0" with node(s) rac2,rac1.
  Check: Node connectivity of subnet "192.168.10.0"
  Source Destination Connected?
  rac2:PrivateLAN rac1:PrivateLAN yes
  Result: Node connectivity check passed for subnet "192.168.10.0" with node(s) rac2,rac1.
  Suitable interfaces for the private interconnect on subnet "172.17.10.0":
  rac2 PublicLAN:172.17.10.23 PublicLAN:172.17.10.201
  rac1 PublicLAN:172.17.10.22 PublicLAN:172.17.10.200
  Suitable interfaces for the private interconnect on subnet "192.168.10.0":
  rac2 PrivateLAN:192.168.10.21
  rac1 PrivateLAN:192.168.10.11
  ERROR:
  Could not find a suitable set of interfaces for VIPs.
  Result: Node connectivity check failed.
  Checking system requirements for 'crs'...
  Check: Operating system version
  Node Name Available Required Comment
  rac2 Windows Server 2008 Windows Server 2008 passed
  rac1 Windows Server 2008 Windows Server 2008 passed
  Result: Operating system version check passed.
  Check: Total memory
  Node Name Available Required Comment
  rac2 8GB (8387020KB) 1GB (1048576KB) passed
  rac1 8GB (8387020KB) 1GB (1048576KB) passed
  Result: Total memory check passed.
  Check: Swap space
  Node Name Available Required Comment
  rac2 16.05GB (16826288KB) 1GB (1048576KB) passed
  rac1 16.05GB (16826288KB) 1GB (1048576KB) passed
  Result: Swap space check passed.
  Check: System architecture
  Node Name Available Required Comment
  rac2 64-bit 64-bit passed
  rac1 64-bit 64-bit passed
  Result: System architecture check passed.
  Check: Free disk space in "C:\" dir
  Node Name Available Required Comment
  rac2 20.21GB (21190416KB) 400MB (409600KB) passed
  rac1 19.98GB (20948624KB) 400MB (409600KB) passed
  Result: Free disk space check passed.
  System requirement passed for 'crs'
  Pre-check for cluster services setup was unsuccessful on all the nodes.

• I am unable to get past the invalid security certificate warning.

  I get the message "Invalid security certificate" I click OK., and then the message disappears and I am not given the option to enter an exception and approve the site. It is the e-mail address for my office (state agency) and as a cost saving measure, they are not paying for a continued security certificate. How do I get to the "exception page?" Is there a security section in the FireFox program I need to change? I hate to have to switch to IE every time I want to check my office mail. Thanks for the assist.
  Tigerbeetle.

  If you can't add an exception, but get a pop-up with the error message then you can check the pref [http://kb.mozillazine.org/browser.xul.error_pages.enabled browser.xul.error_pages.enabled] on the about:config page and make sure that the value is set to the true (default).
  To open the <i>about:config</i> page, type <b>about:config</b> in the location (address) bar and press the "<i>Enter</i>" key, just like you type the url of a website to open a website.<br />
  If you see a warning then you can confirm that you want to access that page.<br />