Hi guys! I've set up OWA Exchange 2013 certificate authentication using this article http://blogs.technet.com/b/exchange/archive/2008/11/12/3406481.aspx Everything works good, but a still can log in with revoked certificate outside my organization. I have CDP and AIA published through http and ldap. My outside machine can determinate that certificate is revoked certutil -f urlfetch -verify mycert.crt shows that it is revoked. Internet Explorer hides it and doesn't allow me to choose it. But Google Chrome allows to choose this certificate and after it my Exchange server also successfully authenticates me. I think it is something with my Exchange settings. Why it authenticates me with revoked certificate? I've described my Exchange server settings here http://social.technet.microsoft.com/Forums/en-US/597558fd-2e3f-4b5b-9cae-77e6d4abb096/enable-exchange-2013-server-users-authenticate-by-certificate?forum=exchangesvrgeneral

Thank you for help.

 

• Edited by Mike Solovey 7 hours 1 minutes ago