Error when Outlook for iOS or Android connects to Exchange Server: Insecure connection or Secure connection unavailable

Article
01/24/2024
Applies to:

Outlook for iOS, Outlook for Android

Original KB number: 4056392

Symptoms

When you use Microsoft Outlook for iOS or Outlook for Android to sign in to an instance of Exchange Server that uses an SSL certificate for secure connections, you receive one of the following error messages:

Insecure connection. Would you like to log in anyway?

Secure connection unavailable. Would you like to log in anyway?

Cause

This issue occurs because the SSL certificate is considered unsupported for one of the following reasons:

The SSL certificate is invalid or expired.
The SSL certificate is untrusted.

Note

Outlook for iOS and Outlook for Android use the standard Java trusted certificate authorities (CAs). If your organization's certificate isn't signed by a certificate authority that's part of the standard Java trusted certificate authorities, this error occurs.

Resolution

You can safely ignore this error message and sign in to Exchange Server. This error message should be displayed only one time.

We recommend that you use an SSL certificate that's officially supported by the Java CA certificate store.

How to verify that a certificate is trusted by the Java CAs

Get the CA of the certificate.
Download the latest Java SE Development Kit (JDK). This kit includes the Java trusted CAs.
Open a Command Prompt window on a Windows-based computer or open a Terminal window on a macOS-based computer.
Use the keytool utility to list the trusted CAs by running the following command:
```
 keytool -keystore "<keystore location>" -storepass changeit -list -v
```
Note

On a macOS-based computer, the <keystore location> parameter could be "$JAVA_HOME/jre/lib/security/cacerts."
Verify that the CA of the certificate is in the list.

For more information about the keytool utility, see the following articles: