Certificate revocation and Outlook 2007

  • Thread starter Thread starter Mark Sztainbok
  • Start date Start date
M

Mark Sztainbok

I'm using Outlook 2007 with an IMAP server at my old work which uses a
certificate generated using the internal work CA certificate (which was
created using OpenSSL). Every time I start up Outlook I get an Internet
Security Warning that states "The revocation function was unable to check
revocation for the certificate".

Is there a way to disable the revocation check? If not, what does it look
for in the certificate in order to do the revocation check? Is it in the
server certificate or the CA certificate?

Any help would be greatly appreciated.

Thanks,
Mark
 
There is no way to avoid the certificate dialog. It's a new security
feature in 2007.
You should click on View Certificate and see if there is anything
flagged from which you can tell better what is going on. It should be
the certificate of the server itself that has a problem.

Patrick Schmid
 
The certificate looks OK and is valid. One thing I've noticed though is that
no purposes are listed for the certificate or the CA certificate for some
reason which is odd as previously when I've looked at the certificates they
did had purposes listed. Could this be part of the problem?

Mark
 
The certificate looks OK and is valid. One thing I've noticed though is that
no purposes are listed for the certificate or the CA certificate for some
reason which is odd as previously when I've looked at the certificates they
did had purposes listed. Could this be part of the problem?

Mark
 
Possibly. Do you have a valid CA certificate on your computer? Can you
contact the admin for the server and see if they can look into the
certificate issue?

Patrick Schmid
 
Possibly. Do you have a valid CA certificate on your computer? Can you
contact the admin for the server and see if they can look into the
certificate issue?

Patrick Schmid
 
The CA certificate is definitely valid as I originally set up the servers
and it has been functioning correctly in the past. It's added as a trusted
root CA certificate and I can access some websites that also have
certificates signed by the CA certificate with no problem.

Mark
 
The CA certificate is definitely valid as I originally set up the servers
and it has been functioning correctly in the past. It's added as a trusted
root CA certificate and I can access some websites that also have
certificates signed by the CA certificate with no problem.

Mark
 
I've had a look at the server certificate and it looks normal too.

I'm not sure what the problem could be. Could the problem be the CA (and
server) certificate doesn't contain a CRL Distribution URL?

Mark
 
I've had a look at the server certificate and it looks normal too.

I'm not sure what the problem could be. Could the problem be the CA (and
server) certificate doesn't contain a CRL Distribution URL?

Mark
 
I honestly don't know. My knowledge of certificates isn't that
extensive. Maybe a different newsgroup might get you a better reply for
this one? (Maybe a Windows Server group?)

Patrick Schmid
 
I honestly don't know. My knowledge of certificates isn't that
extensive. Maybe a different newsgroup might get you a better reply for
this one? (Maybe a Windows Server group?)

Patrick Schmid
 
Back
Top