Security Pop up message when using VeriSign Certificate

  • 7005764
  • 16-Apr-2010
  • 27-Apr-2012

Environment

Novell eDirectory 8.8 for All Platforms
Novell Certificate Server (PKIS) 3.1.1

Situation

Many people using WebMail or other Apache based web access tools that require secure access will purchase and install a third party certificate so that when the certificate is accessed by the users, it is signed by a well known Certificate Authority, and will not generate security warnings (See KB 3028260).  In one case, even with a Verisign certificate installed and operating properly, users were still getting the security warning pop up screen.

Resolution

In this case, the customer environment had their Apache configured to redirect http://webmail.<company>.com/ to go to https://<ip address>/ instead of going to https://webmail.<company>.com/.   This triggered the mismatched name issue described in KB 3028260.  Changing their redirect command to go to the DNS name instead of the IP address of the server resolved the problem.