This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Certificate Error in Outlook 2010

Hi there,

I upgraded our Web Appliance to V4.0.2.2 in gradual steps yesterday (1st June 2015) and we have suddently started getting a certificate error in Outlook 2010 claiming that an untrusted certificate has been issued by the Web Appliance to autodiscover.domain.com (see attached photo). The strange thing is the certificate was issued on the 27th May, several days before I did the box upgrade.

I have tried enabling Certificate Validation (which we don't tend to use) but it makes no difference that I can tell.

Is anyone else getting anything odd like this? Any ideas where to start looking?

Cheers.

:57486


This thread was automatically locked due to age.
  • Hi ReverendRob,

    If you do not have HTTPS Scanning enabled, the appliance will still use it's self-signed certificate to send error or warn pages for HTTPS Requests; this is required because browser require a reply to be encrypted using SSL/TLS.   You should seach for any requests that might have been blocked/warn for the user.  If you don't seen any type of block in the search, you can look at the sophos_log if you back it up via FTP or syslog server; or call support to look at the log on the backend.

    Generally I recommend deploying the Sophos Root CA on your clients to avoid any type of certificate errors that might show up for end users due to errors or alert responses from the Web Appliance for HTTPS requests.  You can find information on how to do that here:

    https://www.sophos.com/en-us/support/knowledgebase/42153.aspx

    Petr.

    :57490
  • I didnt want to make a new thread as this has already been brought up but i work for a primary school and we currently have a ws500 web appliance which was upgraded to version 4.0.2.3 last night.

    The version prior to the upgrade was 3.9.4.1. It did 6 updates and when it was on version 3.9.4.1 we had no issues when opening outlook 2013. Now on the latest version it keeps coming up with security alert messages three times on every user that has outlook 2013. One for a mailserver, the second for one of our servers and the third for a domain name under our office 365 cloud.

    Is there anyway to fix this as i have already contacted someone from sophos technical support who looked at the backend and didnt do anything?

    :57713
  • I'm having allsorts of cert errors with any site that get redirected to an HTTPS site since the upgrade. I to have placed a call yesterday after noon. After 58 minutes i finally got a human that remoted onto my machine looked for about a minute and said he was sending it to level 2. He kept the live chat open and stayed remoted on. no one did anything from what i can tell from 11 am to about 4:30 PM. I tried to get them back on the phone but after another hour i gave up. I did talk to the level 1 tech a few times in the chat but he would only respond when i had a suggestion of what was wrong. It's almost as if they dont know what they broke and are hoping someone else fixes it. If you've had any luck please let us know

    :57739
  • Hi Everyone,

    We have taken a deeper look at the Certificate issues and we are going to change the behaviour slightly in v4.0.3 to prevent the certificate alerts in Outlook.   We expect this version to be released late next week or the week after.

    Petr.

    :57759
  • hello

    are there any further updates to this issue?

    Contacted Support but not heard anything back so thought I would try here

    :57885
  • Release notes for version 4.0.3 mention a fix for issue.

    http://wsa.sophos.com/docs/ws1000/ws1000/concepts/ReleaseNotes_4.0.3.html

    As the release notes are now public, we can expect the availibility of this update soon.

    :57910