Error when Outlook for iOS or Android connects to Exchange Server: Insecure connection or Secure connection unavailable
Original KB number: 4056392
When you use Microsoft Outlook for iOS or Outlook for Android to sign in to an instance of Exchange Server that uses an SSL certificate for secure connections, you receive one of the following error messages:
Insecure connection. Would you like to log in anyway?
Secure connection unavailable. Would you like to log in anyway?
This issue occurs because the SSL certificate is considered unsupported for one of the following reasons:
- The SSL certificate is invalid or expired.
- The SSL certificate is untrusted.
Outlook for iOS and Outlook for Android use the standard Java trusted certificate authorities (CAs). If your organization's certificate isn't signed by a certificate authority that's part of the standard Java trusted certificate authorities, this error occurs.
You can safely ignore this error message and sign in to Exchange Server. This error message should be displayed only one time.
We recommend that you use an SSL certificate that's officially supported by the Java CA certificate store.
How to verify that a certificate is trusted by the Java CAs
Get the CA of the certificate.
Download the latest Java SE Development Kit (JDK). This kit includes the Java trusted CAs.
Open a Command Prompt window on a Windows-based computer or open a Terminal window on a macOS-based computer.
Use the keytool utility to list the trusted CAs by running the following command:
keytool -keystore "<keystore location>" -storepass changeit -list -v
On a macOS-based computer, the <keystore location> parameter could be "$JAVA_HOME/jre/lib/security/cacerts."
Verify that the CA of the certificate is in the list.
For more information about the keytool utility, see the following articles: