Exchange Server 2016 CU2 update caused Chrome to not open owa site

Just ran update for CU2. We are disabling tls 1.0 and ssl 1-3 for pci comliance. after the update we had to disable tls1.0 again but we are not able to get into owa from chrome. However IE11 and safari both work fine and chrome on the iphone works fine. chrome gives the error "This site can't be reached" Page is not secure but there is a valid certificate and secure resources showing green. chrome did work and we were pci compliant before the update from cu1 to cu2. Any help would be appreciated. The only thing I can think of if there is a default certificate in exchange the uses smtp service. Just noticed that android phones will not connect for email where iphones still work.
 

Question Info


Last updated May 29, 2020 Views 5,979 Applies to:
Answer
Answer

 ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY

I had the exact error with Windows Server 2016 and Exchange 2016 CU3 using a self-signed certificate on a fresh test environment.

I've resolved it using iiscrypto (https://www.nartac.com/Products/IISCrypto GUI) chose the "Best Practice" option.

After rebooting, the OWA login form showed up.

I hope the solution works for you as well, Good luck!

56 people were helped by this reply

·

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.