Certificate Error in Outlook 2010

Hi ReverendRob,

If you do not have HTTPS Scanning enabled, the appliance will still use it's self-signed certificate to send error or warn pages for HTTPS Requests; this is required because browser require a reply to be encrypted using SSL/TLS.   You should seach for any requests that might have been blocked/warn for the user.  If you don't seen any type of block in the search, you can look at the sophos_log if you back it up via FTP or syslog server; or call support to look at the log on the backend.

Generally I recommend deploying the Sophos Root CA on your clients to avoid any type of certificate errors that might show up for end users due to errors or alert responses from the Web Appliance for HTTPS requests.  You can find information on how to do that here:

https://www.sophos.com/en-us/support/knowledgebase/42153.aspx

Petr.

I didnt want to make a new thread as this has already been brought up but i work for a primary school and we currently have a ws500 web appliance which was upgraded to version 4.0.2.3 last night.

The version prior to the upgrade was 3.9.4.1. It did 6 updates and when it was on version 3.9.4.1 we had no issues when opening outlook 2013. Now on the latest version it keeps coming up with security alert messages three times on every user that has outlook 2013. One for a mailserver, the second for one of our servers and the third for a domain name under our office 365 cloud.

Is there anyway to fix this as i have already contacted someone from sophos technical support who looked at the backend and didnt do anything?

I'm having allsorts of cert errors with any site that get redirected to an HTTPS site since the upgrade. I to have placed a call yesterday after noon. After 58 minutes i finally got a human that remoted onto my machine looked for about a minute and said he was sending it to level 2. He kept the live chat open and stayed remoted on. no one did anything from what i can tell from 11 am to about 4:30 PM. I tried to get them back on the phone but after another hour i gave up. I did talk to the level 1 tech a few times in the chat but he would only respond when i had a suggestion of what was wrong. It's almost as if they dont know what they broke and are hoping someone else fixes it. If you've had any luck please let us know

Hi Everyone,

We have taken a deeper look at the Certificate issues and we are going to change the behaviour slightly in v4.0.3 to prevent the certificate alerts in Outlook.   We expect this version to be released late next week or the week after.

Petr.

hello

are there any further updates to this issue?

Contacted Support but not heard anything back so thought I would try here

Release notes for version 4.0.3 mention a fix for issue.

http://wsa.sophos.com/docs/ws1000/ws1000/concepts/ReleaseNotes_4.0.3.html

As the release notes are now public, we can expect the availibility of this update soon.