How to disable Outlook for checking for IMAP/POP3 Certificate Name Mismatch?

I have outlook clients that are connected to an IMAP/POP3 server that's off-site provided by company A.

Company A requires me to enter imap.companya.com for imap server address and 993 for the port.

I must also enable SSL for the connection.

When I do this, Outlook pops up an error message (shown below), that must be reacted to every time it checks for mail.

The reason is that the certificate is for myserver.companya123.com and that's different than imap.companya.com but company A wont change it. They said I need to disable my email programs certificate check so it doesn't keep prompting me. Now I can do this with my iphone, and other email programs without incident. But I cannot find where to disable it in outlook.

If I change the imap server address in my account settings for outlook to instead use myserver.company a123.com, outlook can't connect and as the vendor said I must use imap.companya.com as the imap server address.

I need to be able to connect via SSL (so nobody can swipe my password over the wire) but not have to react 1000x a day to the certificate warnings.

I don't want to use Eudora, or another email client that allows me to easily disable the warning. I want to use outlook. How do I set outlook so it doesn't keep popping up these certificate server name mismatch warnings?

I spent days searching for a fix, and it seems there are fixes via the registry for just about every type of certificate issue, but NOT THIS PARTICULAR ONE.

I am hoping someone knows exactly what I am talking about and knows of a easy fix. I must use SSL so please don't tell me to disable SSL.

What I need is to disable outlook from presenting that alert. That's what I need to do. No other solution will suffice. I hope outlook does not have a product limitation that prevents such a thing from being done. I am ok with a registry fix if need be, but being able to disable outlook from presenting certificate name mismatch alerts is critical. Hope its possible! Thanks!


  • Edited by ACECORP Friday, April 24, 2015 8:03 PM
April 24th, 2015 7:54pm

Have you ever tried this registry key?

System Key: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\[version]\Outlook\Security]
Value Name: SupressNameChecks
Data Type: REG_DWORD (DWORD Value)
Value Data: (0 = default, 1 = supress checks)

Kapaal


  • Edited by Kapaal 6 minutes ago
Free Windows Admin Tool Kit Click here and download it now
April 27th, 2015 3:23am

Have you ever tried this registry key?

System Key: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\[version]\Outlook\Security]
Value Name: SupressNameChecks
Data Type: REG_DWORD (DWORD Value)
Value Data: (0 = default, 1 = supress checks)

Kapaal


  • Edited by Kapaal Monday, April 27, 2015 7:22 AM
April 27th, 2015 7:21am

The SupressNameChecks registry suggestion you made does not have anything to do with outlook disregarding server SSL certificates whose names do not match the name of the server.

Your suggestion prevents outlook from performing a name check on a certificate that's applied to an email message (used for secure messaging) - which is totally different. See details here - https://support.microsoft.com/en-us/kb/276597

I need to stop outlook from performing a name check on the server side certificate that's applied to the imap server to which I am connecting and making the suppressnamechecks  registry change does not fix that.

I hope outlook does not have a product limitation that prevents such a thing from being done. That would make it very different from thunderbird and any other mail client that allows you to disable server side certificate name mismatch checking.

Free Windows Admin Tool Kit Click here and download it now
April 27th, 2015 9:35am

Hi,

I would suggest we try the registry key mentioned in this article (Method 4) to configure Outlook to allow the connection to the mismatched domain name, and see if it works:

HKEY_CURRENT_USER\Software\Microsoft\Office\<var>xx</var>.0\Outlook\AutoDiscover\RedirectServers

Let me know if this doesn't work.

Regards,

Ethan Hua

Forum Support

April 30th, 2015 2:42am

Hello,

Try this:

View the certificate while you get alert message. then export it in a file on your local machine.

open internet explorer tools-content-certificates-trusted root certificates

then import the saved certificate file.

Regards,

TheHumanBot

Free Windows Admin Tool Kit Click here and download it now
April 30th, 2015 3:03am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics