Announcement

Collapse
No announcement yet.

secure IMAP setup?

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • secure IMAP setup?

    firstly thanks very much to this site, i have set up my first exchange server by following various guides, and security with the following

    http://www.petri.com/install_windows_server_2003_ca.htm
    http://www.petri.com/obtain_digital_..._online_ca.htm

    http://www.petri.com/configure_messa...hange_2003.htm
    http://www.petri.com/configure_messa...tlook_2003.htm

    http://www.petri.com/provisioning_owa_2003.htm
    http://www.petri.com/configure_ssl_on_owa.htm




    i am trying to set up IMAP so i can access my emails wherever i am and on any OS/client platform, for example thunderbird on mac os/linux as well as outlook with XP.


    - so far OWA works perfectly and securely (using https://domain.com/exchange, and i get the padlock icon)

    - outlook works with exchange server locally. i presume securely as i set it up following the above guides, but i'm not sure how to test it. but i will only use that method on my local network or secure vpn anyway.

    - 'local' IMAP (where the IMAP server is just the NETBIOS name of my exchange server) works sending and receiving without SSL, but not if i enable it in outlook under internet email settings>advanced>use SSL. i get error code 0x800ccc0e (generic looking 'can't connect' message) for receiving and 0x800ccc7d (your SMTP server does not support SSL) on sending

    - external IMAP doesn't work at all with thunderbird on mac os. i have left settings at the defaults with no security but all i get is a message that the connection has been refused. however SMTP works just fine, i can send as the account but cannot copy the message to the 'sent items' folder for the account. i have not set up any CA stuff on this mac.

    (edit: actually it works now, i forwarded some ports)



    is there a step i'm missing? SSL appears to work, as does IMAP, but not together. i notice many tutorials on exchange i found googling around neglect to mention forwarding ports on firewalls or routers, i have forwarded whatever i can think of like 25, 993, 465, 443 (edit: and 143). if anyone can help i'd really appreciate it


    thanks in advance
    Last edited by sentofuno; 20th February 2008, 17:43.

  • #2
    Re: secure IMAP setup?

    Originally posted by sentofuno View Post


    is there a step i'm missing? SSL appears to work, as does IMAP, but not together. i notice many tutorials on exchange i found googling around neglect to mention forwarding ports on firewalls or routers, i have forwarded whatever i can think of like 25, 995, 465, 443. if anyone can help i'd really appreciate it
    glad to see you have done your homework prior to the setup. that is always the best thing to do.
    also, good to see you sticking to the forum for the help. all the articles here are consistent and dont conflict... if you pick from here and the msexchange forums, you will notice inconsistencies.

    i see the list of ports you forwarded, but i didnt see port 993. this is the default port for IMAP/TSL-SSL apps.

    where did you get the cert? does the cert work with OWA in Konquor/whatever the apple browser (safari?) is.
    its easier to beg forgiveness than ask permission.
    Give karma where karma is due...

    Comment


    • #3
      Re: secure IMAP setup?

      sorry, 995 was a typo. yes 993 is forwarded

      i created the certificate following this:

      http://www.petri.com/install_windows_server_2003_ca.htm


      i have not set up the certificate in mac os other than to accept it when prompted by firefox. OWA works perfectly however. i don't use safari or konquerer (i think thats the default file/web browser in KDE versions of linux) but i can do if it makes a difference? if i use OWA i can't see myself using anything but firefox or IE.


      apologies for the bad info, i will update my original post

      Comment


      • #4
        Re: secure IMAP setup?

        so everything works except the IMAP/SSL in thunderbird?

        before jumping platforms, lets entertain the thought of it working on windows first.

        can you configure outlook to use the IMAP/SSL service?

        if you can, then we can jump forward to thunderbird.

        in thunderbird, can you verify that the "Use secure authentication" is unchecked?

        or better yet, how far do you get before the TB setup craps out on ya?

        and what about TB on windows? any different response?
        Last edited by James Haynes; 20th February 2008, 20:49.
        its easier to beg forgiveness than ask permission.
        Give karma where karma is due...

        Comment


        • #5
          Re: secure IMAP setup?

          i tried with outlook to test, i get the same errors i originally posted, but after playing around i am now able to access IMAP remotely with both xp/outlook and mac os/thunderbird.

          also no after reading around i left 'use secure authentication' unchecked. i got the impression it doesn't mean what a lot of ppl think it does..

          so IMAP and SMTP works regardless of platform but SSL IMAP or SMTP is still a problem. i guess its something i need to configure in exchange? the error code i got for SSL SMTP suggests i need to enable SSL for SMTP on the server so the same may be true for IMAP.

          thanks very much for your help so far. i'm very happy to have got IMAP working at all, i really appreciate it

          Comment


          • #6
            Re: secure IMAP setup?

            well i played around with it for the last week but still no joy. i can send and receive just fine but not with SSL. the errors i get (as previously posted) suggest to me its a matter of configuration on exchange, and not an issue with connectivity or the certificate i produced myself.

            can anyone confirm this? i am out of ideas. at this point even if no one has a solution any help in ruling out issues would be very helpful, i've probably wasted a lot of time going over things i need not already.

            thanks in advance

            Comment

            Working...
            X