Security News > 2021 > May > Microsoft Exchange admin portal blocked by expired SSL certificate
The Microsoft Exchange admin portal is currently inaccessible from some browsers after Microsoft forgot to renew the SSL certificate for the website.
Starting at 8 AM EST today, Microsoft Exchange admins who attempted to access the admin portal at admin.
Microsoft.com suddenly found that their browsers were issuing warnings that the connection was not private due to an expired SSL certificate.
According to Qualys' SSL Labs, the certificate expired today, Sun, 23 May 2021, at 12:00:00 UTC. For those on the east coast of the United States, that is is equivalent to Sun, 23 May 2021 08:00:00 EST. Microsoft states that they are aware of the issue and are working on a fix.
As a temporary workaround, Microsoft states you can access the admin portal from the https://outlook.
BleepingComputer has reached out to Microsoft to learn more about when they expect the SSL certificate to be renewed but has not heard back at this time.
News URL
Related news
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft still unsure how hackers stole MSA key in 2023 Exchange attack (source)
- US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack (source)
- Microsoft will limit Exchange Online bulk emails to fight spam (source)
- Microsoft releases Exchange hotfixes for security update issues (source)