Hot!Outlook warning certificate

Author
amateolo
New Member
  • Total Posts : 17
  • Scores: 0
  • Reward points: 0
  • Joined: 2016/02/05 04:39:41
  • Status: offline
2016/03/10 09:25:46 (permalink)
0

Outlook warning certificate

Hi experts,
I have a problem with the explicit proxy.
I do not stop out in the notice outlook attached.
I have enabled SSL inspection to filter https proxy.
Can you help me or give me some idea?
Regards.

Attached Image(s)

#1

7 Replies Related Threads

    SteveRoadWarrior
    Silver Member
    • Total Posts : 104
    • Scores: 4
    • Reward points: 0
    • Joined: 2011/06/28 09:03:07
    • Location: east coast USA
    • Status: offline
    Re: Outlook warning certificate 2016/03/10 13:01:44 (permalink)
    0
    you may be able to resolve this one of two ways:
     
    1. in the web filter profile, exclude filtering for the mail.[   ].com domain.  We've seen this fix dropbox issues before.
    2. in AD group policy, make a new group policy which deploys the SSL Certificate used by the Fortigate.  Deploy it as trusted and the workstations will believe they're talking to the real server.  A word of caution, depending on how the SSL Certificate snooping is configured, users may not realize they're talking to a fake site because the Fortigate is re-signing everything as trusted.  So you may want to leave disabled the feature which allows users to see sites with bad SSL certificates.
     
    #2
    amateolo
    New Member
    • Total Posts : 17
    • Scores: 0
    • Reward points: 0
    • Joined: 2016/02/05 04:39:41
    • Status: offline
    Re: Outlook warning certificate 2016/03/10 13:17:55 (permalink)
    0
    Hi Steve,
     
    Thanks for answering.
     
    I think the right way would be 1, since the road 2've done, installing the certificate on my own workstation and that message keeps coming every 2 or 3 hours.
    The problem comes if you use explicit proxy, when I get the warning active
    If I allow the https traffic in the political ipv4 not get the error.
     
    What would be the process to create the ssl inspection exepcion not?
     
    If you need more information, I sent you.
     
    thank you.
    #3
    SteveRoadWarrior
    Silver Member
    • Total Posts : 104
    • Scores: 4
    • Reward points: 0
    • Joined: 2011/06/28 09:03:07
    • Location: east coast USA
    • Status: offline
    Re: Outlook warning certificate 2016/03/10 13:24:25 (permalink)
    0
    Perhaps you can make an IPv4 firewall policy and place it above the normal internet access policy.
    Inside that policy make the following settings:
    - from [your LAN]
    - to [IP address of the mail server]
    enable NAT, but do not enable SSL Cert, do not enable Web Filtering
     
    #4
    amateolo
    New Member
    • Total Posts : 17
    • Scores: 0
    • Reward points: 0
    • Joined: 2016/02/05 04:39:41
    • Status: offline
    Re: Outlook warning certificate 2016/03/11 01:09:13 (permalink)
    0
    Hi,
     
    The problem does not have to ipv4 policy.
    I have it with explicit web.
    I tried to make exceptions to the mail domain name, but does not work.
    attached
     
    Regards

    Attached Image(s)

    #5
    redasodexo
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2016/03/17 03:39:34
    • Status: offline
    Re: Outlook warning certificate 2016/03/17 04:49:39 (permalink)
    0
    hi all
    have seam issue with outlook in my domain since have introduce fortigate 100d but finally i have allowed http over proxy  or outlook web access from application control in mail section
    #6
    jiggyjiyane
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/06/13 00:32:39
    • Status: offline
    Re: Outlook warning certificate 2019/01/22 02:14:37 (permalink)
    0
    Hi
     
    I experienced the same issue, and fix was to put in the Proxy FQDN and Realm... E.g Proxy for company named Example
     
    Proxy FQDN = proxy.example.co.za
    Realm = example.co.za
     
     
     
     
    #7
    rocky700
    New Member
    • Total Posts : 1
    • Scores: 0
    • Reward points: 0
    • Joined: 2019/01/24 23:59:11
    • Status: offline
    Re: Outlook warning certificate 2019/01/25 00:02:37 (permalink)
    0
    The outlook is doing every process to make it secure and the warning certificate is also an example of that. The thing is that it has to be done to make the email scam and hacking preventive.
    #8
    Jump to:
    © 2019 APG vNext Commercial Version 5.5