My organization recently disabled SSL insecure renegotiation in Windows on our Exchange 2007 servers. We did this because the ssllabs.com report for my site gives it an F rating “because it is vulnerable to MITM attacks because it supports insecure renegotiation”. We changed a registry setting on the server to match this screenshot:
external image link
However, now that we have added those registry entries, both Outlook 2011 and Mail.app no longer works. They simply will not connect to the servers.
Has anyone else seen this issue? Can anything be done to fix both issues? Any suggestions are welcome, ranging from server settings to programming solutions. I've been searching for this for a while and have only come across one other person who had this issue and he never found a fix for it.
Thanks in advance,
Chris