"Unable to Verify Certificate"

i had the same problem... After getting the " Unable to Verify Certificate" a few times i noticed that up in the top right hand corner of the same screen there was a button that said "NEXT". i pressed that button even know i had the "Unable to Verify" warning. Then it opened up the options to check what you wanted to sync. as soon as i turned off SSL everything worked.

I was at it for an hour before i saw that the "NEXT" button was up there. As long as you know all your info just put it in a few times and hit the cancel or accept buttons till the "NEXT" button shows....

Yikes... I could of worded that better....

OWA is completely independent from OMA. They may have it turned off, it may be on a different server...who knows? I don't think this is a certificate problem.

I have the same problem, but unfortunately don't have a solution.

I got the same error, but then for some reason it automatically turned on my Passcode Lock and still manages to get my e-mail and calendars from the Exchange server. So, Exchange is working great, but I have to type in an annoying passcode every time I want to use my phone. Anyone know how to turn that off? There is no "on/off" toggle available in the Settings panel!

I got the same error, but then for some reason it automatically turned on my Passcode Lock and still manages to get my e-mail and calendars from the Exchange server. So, Exchange is working great, but I have to type in an annoying passcode every time I want to use my phone. Anyone know how to turn that off? There is no "on/off" toggle available in the Settings panel!

Chiming in as well with same problem. There must be some configuration on exchange that is not in default setting. My guess is that we're not getting pointed to the right folder somehow. Anyhow, I contacted my exchange administrator with this description. If I get a solution, I will post it. (details have been made generic to protect the innocent).

FYI, a 5 year certificate was purchased last week from godaddy for mail.domain.com

Settings>Mail>Add account...
Choose "Microsoft Exchange"
Email = acctname@domain.com
Username = "domain\acctname"
Password = my password
Description = "Easy reminder name"
Press "Next"
* now I don't get the unable to verify certificate error (from autodetect), but it goes directly to this... *
iPhone says [Enter your Exchange account information]
Server = "mail.domain.com"
Press "Next"
Error = [Unable to verify certificate The certificate from "mail.lonestarorthopedics.com" for account "" could not be verified.]
I have two options "accept" or "cancel"
Cancel = backs all the way out, no account set up
Accept = iPhone says [Exchange account verified]
Press "Save"
iPhone says [configured sync for exchange]

Then to check my mail...
Mail>LSO>Inbox
[It's empty]

Also calendar and contact info is not syncing either.

I got this error as well, and it still works. It basically just trying to discern your server FQDN from the cert, hence the reason why it asks you for the server name only after the cert verify fails.

Make sure to create the account BEFORE putting the cert on the phone, or you will just end up with a blank inbox.

As I Promised... an update.

After speaking with my Exchange administrator, he told me that the autodetect settings only works with Exchange 2007 and we have Exchange 2003. That's why the autodetect couldn't verify that certificate.

As mentioned previously, our certificate was from Godaddy, and we suspected that the certificate may not be on the iPhone (not being verisign and all). Apple actually has a page showing which certificates are installed on the iPhone, and the Godaddy was one of them, but we didn't trust them... why else would the certificate not be recognized. So I reinstalled the Godaddy certificate... The certificate was still not recognized. I don't know what an intermediate certificate or root certificate is, but we installed those too. At this point, I didn't delete the account and recreate it, but my inbox was still empty and no calendar info was synced.

At this point, we were wondering if the certificate was working at all. So I logged on to the OWA using iPhone's safari. It didn't recognize the certificate as from a trusted source, I told it to go ahead, and logged on. The OWA worked fine.

Just as a test, I did the same thing from Safari on my iMac. Same exact result. BUT... the second time you try to log on to OWA from iMac or iPhone, there was no more certificate error.

At this point we realized that the iPhone was not having a certificate problem. Still puzzled, we scoured the literature. Hmmm (try not to laugh) iPhone supports Exchange 2003 SP2. We had SP1. When we updated to SP2, I deleted the account and created a new one, and no more certificate error.

IMO, the only two things it could be is the install of the intermediate certificate (not likely) or the update to SP2 (likely)

SO LISTEN UP, MAKE SURE YOUR EXCHANGE SERVER IS AT LEAST THE VERSION APPLE SUPPORTS!!!!

But... There is still a problem, maybe Ycore can help me.

No matter what I do, I still have an empty Inbox and the calendar info is not syncing. Does anyone have an idea how to fix that?

Sigh! Just adding myself to this thread and grabbing an ore.

Have had almost the same exact problems, but on SP2 the entire time. Was just getting ready to install the GD cert on my phone to see if that works.

sigh.

How do you install a certificate?

My Exchange Admin solved our issues.

First, let me start with the easy question. To install a certificate... email it to an email account you can get from your iPhone (try your mobileme account). When you get the mail from the iPhone, you'll see the attachment. Tap on the attachment, and it will allow you to install. To uninstall, it Settings>General>Profiles. Ok, now to the solution (I suggest you go to my earlier posts in this thread to see if your problem is like mine):

nb: a good tip we picked up from another user was to configure a WM device to work with activesync 1st. Once you are sure it works with the WM device, THEN you troubleshoot the iPhone. We purchased the certificate specifically to get exchange to talk with my iPhone. We never tested it on a WM device. The iPhone is not helpful with troubleshooting. Start with a WM device, then move on to iPhone.

Here's what he said, "It was a 2 problem issue:

First problem is related to a GoDaddy certificate issue. Mobile Devices are not loaded with intermediate certs, and the GoDaddy intermediate cert must be loaded for the authentication to work.

The second issue is related to the fact that MS is lame sometimes and if you don't use a front end/back end config for Exchange (most small shops like yours don't) you have to go through a reconfig in IIS for activesync to work."

(I copied that exactly from his email... I have no idea what that means)

He continues, "With all this extra work done (thanks MS, and thanks GoDaddy) I am able to synch with my WM device now. I have the intermediate cert loaded. It is also installed on the Exchange server (had to do that too, GoDaddy doesn't include it as part of their cert intall - very stupid) so it should push to your iPhone the first time you try to connect. Go ahead and try synching with your iPhone again and let me know if it works."

Suffice it to say, it worked immediately. So all you have to do is make sure that the intermediate certificate is installed on both the iPhone and the Exchange server, and you have to do that other bit of jibberish that I don't understand, and then everything suddenly works.

Hope this was helpful. I love these discussions groups, and I wanted to finally pay back for all the help I received.

This last post is not really related to the topic of this thread, and might be obvious to some, but it reflects the last issues I had to iron out before everything was working as Apple promised.

While I was working on the connection between the iPhone and Exchange, I synced my windows environment with the MobileMe server. This has to be undone once the iPhone is connecting to Exchange.

Go to the MobileMe control panel in the windows environment and turn off syncing with that machine.

If you had your contacts divided into groups, and your appointments set up in different calendars, Exchange will have set up "subfolders" to your root calendar folder and contact folder. You will need to move everything to the root folder. Only the contents of the root folder will sync with your phone. To keep things simple, I deleted the subfolders once they were empty.

I wasn't an iPhone 1.0 adopter, because I felt it wasn't ready. Now that I've played with 2.0, I like it, but I still don't feel it is ready. I can't get my "Notes" and "To do" items to sync.

iPhone Notes don't sync.