none
Using Certificate logon to Exchange RRS feed

  • Question

  • Hi, I already setup Certificate Authority on my Windows 2008 R2 Server. Is there an instruction how can I use my certificate to login to Exchange Server? Please advise.

     

    Thx
    Angkor

    Friday, December 9, 2011 6:55 PM

Answers

  • Hi,

     

    SSL certificates provide e-mail connection encryption between the Exchange Server and clients, protecting important and confidential corporate data from unwanted access.

     

    For example, for domain-connected clients, Outlook 2007 is designed to ignore the first validity check in the previous list. This design enables Outlook 2007 to function without any certificate warnings when Outlook uses the self-signed certificate that is installed by Exchange 2007 Setup, which you can refer to the link: http://technet.microsoft.com/en-us/library/bb332063(EXCHG.80).aspx#ADAndCertificates

     

    So, you don’t use your certificate to login to Exchange server, instead, you need to install the trusted root certificate to make the communication between server and clients more safely.

     

    For the detail steps, you can refer to the similar thread:

    http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/c57fc091-9b02-458c-94af-692e9633df8d

     

    Hope it helps.

     

    Thanks


    Sophia Xu

    TechNet Community Support

    • Marked as answer by Sophia Xu Friday, December 16, 2011 7:22 AM
    Monday, December 12, 2011 2:41 AM
  • Hi Angkor,

     

    Sorry so late to reply. As per my knowledge, even though you use the trust certificate to login through OWA in external domain, you also need to enter username and password. But if you login OWA in domain, you can configure server to login OWA not entering username and password.

     

    You can configure Integrated Windows authentication for Outlook Web App in Microsoft Exchange Server 2007/2010. Integrated Windows authentication enables the server to authenticate users who are signed in to the network without prompting them for their user name and password and without transmitting information that isn't encrypted over the network. But this method is fit for domain account. For the detail steps, you can refer to the link: http://technet.microsoft.com/en-us/library/aa998638(EXCHG.80).aspx

     

    Hope it helps.

    Thanks


    Sophia Xu

    TechNet Community Support

    • Marked as answer by Sophia Xu Friday, December 16, 2011 7:22 AM
    Friday, December 16, 2011 7:18 AM

All replies

  • Hi,

     

    SSL certificates provide e-mail connection encryption between the Exchange Server and clients, protecting important and confidential corporate data from unwanted access.

     

    For example, for domain-connected clients, Outlook 2007 is designed to ignore the first validity check in the previous list. This design enables Outlook 2007 to function without any certificate warnings when Outlook uses the self-signed certificate that is installed by Exchange 2007 Setup, which you can refer to the link: http://technet.microsoft.com/en-us/library/bb332063(EXCHG.80).aspx#ADAndCertificates

     

    So, you don’t use your certificate to login to Exchange server, instead, you need to install the trusted root certificate to make the communication between server and clients more safely.

     

    For the detail steps, you can refer to the similar thread:

    http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/c57fc091-9b02-458c-94af-692e9633df8d

     

    Hope it helps.

     

    Thanks


    Sophia Xu

    TechNet Community Support

    • Marked as answer by Sophia Xu Friday, December 16, 2011 7:22 AM
    Monday, December 12, 2011 2:41 AM
  • Thanks for the info Sophia. I thought u can use the certificate to login through webmail without entering username and password. Is that possible?

     

    Thx
    Angkor

    Tuesday, December 13, 2011 1:49 AM
  • Hi Angkor,

     

    Sorry so late to reply. As per my knowledge, even though you use the trust certificate to login through OWA in external domain, you also need to enter username and password. But if you login OWA in domain, you can configure server to login OWA not entering username and password.

     

    You can configure Integrated Windows authentication for Outlook Web App in Microsoft Exchange Server 2007/2010. Integrated Windows authentication enables the server to authenticate users who are signed in to the network without prompting them for their user name and password and without transmitting information that isn't encrypted over the network. But this method is fit for domain account. For the detail steps, you can refer to the link: http://technet.microsoft.com/en-us/library/aa998638(EXCHG.80).aspx

     

    Hope it helps.

    Thanks


    Sophia Xu

    TechNet Community Support

    • Marked as answer by Sophia Xu Friday, December 16, 2011 7:22 AM
    Friday, December 16, 2011 7:18 AM