"Microsoft Exchange Add-In" (UmOutlookAddin.dll) + Outlook Security Form ...

Status
Not open for further replies.

AlanBru

Member
Outlook version
Outlook 2010 32 bit
Email Account
Exchange Server
Hello,




For many years, we've been using the Outlook Security Form with Outlook 2003 clients without any problems.


However, in Outlook 2010, using the form causes the "Microsoft Exchange Add-In" (Mso.dll + UmOutlookAddin.dll) to be caught by the object model guard on start-up and composing messages ("a program is trying to access...").


If we disable that add-in in the Trust Center in Outlook 2010, no warnings appear.




Any idea how to avoid that please?


Also, does anyone know what exactly that add-in is needed for? It seems to be involved in calendar availability info as well as unified messaging so disabling it would be risky.




The Outlook Security form is still in an Exchange 2003 public folder.


I know we can migrate its individual settings to a GPO but that will take time.


We have installed Exchange 2010 servers and started to move mailboxes.


Win7 64-bit with Office 2010 32-bit SP1.




I noticed that when the security form is used, all the options in the programmatic access section are grayed out and no options are checked; editing the registry makes no difference.


If we don't use the form, the options are still all grayed out but the first option is checked ("warn me... when my antivirus is out of date"). The antivirus status is valid in both cases.




Thanks,




- Alan.
 

Diane Poremsky

Senior Member
Outlook version
Outlook 2016 32 bit
Email Account
Office 365 Exchange
Re: "Microsoft Exchange Add-In" (UmOutlookAddin.dll) + Outlook Security Form .

UM = unified messaging. AKA voice mail in Outlook. This allows you to read and reply to voice mail over the phone AFAIK.

The official description for that dll is "Exchange support for Unified Messaging, e-mail permission rules, and calendar availability. "

MSO is a general office dll and is needed for sure.

Do you get a dialog about trusting certificates? Look at File, Options, Trust Center - trusted publishers to see if any are trusted.

Are you applying macro security to addins? (Trust Center > Macro settings) That will kick up the trust certificate warning - if the form doesn't disable that setting, test it and see if trusting it helps.

Programmatic Access: this is always grayed out unless running Outlook as administrator. Default is Warn me... the form handles all these settings and overrides these settings.

These policy keys control the warning - the form probably overrides these policy settings too.

HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\14.0\outlook\security

DWORD: PromptOOMSend

Value: 2

DWORD: AdminSecurityMode

Value: 3
 

Diane Poremsky

Senior Member
Outlook version
Outlook 2016 32 bit
Email Account
Office 365 Exchange
Re: "Microsoft Exchange Add-In" (UmOutlookAddin.dll) + Outlook Security Form .

Dang, that was posted before I was finished. :(

Have you seen this -

From Choose security and protection settings for Outlook 2010

To trust a COM add-in, include the file name for the add-in in a Group Policy setting with a calculated hash value for the file. Before you can specify an add-in as trusted by Outlook, you must install a program to calculate the hash value. For information about how to do this, see Manage trusted add-ins for Outlook 2010.

If you enforce customized Outlook security settings with the Microsoft Exchange Server security form that is published in an Exchange Server public folder, you can learn how to trust COM add-ins. Scroll down to the Trusted Code tab section in the Microsoft Office 2003 Resource Kit article, Outlook Security Template Settings.

If the user continues to see security prompts after the add-in is included in the list of trusted add-ins, you must work with the COM add-in developer to resolve the problem. For more information about coding trusted add-ins, see Important Security Notes for Microsoft Outlook COM Add-in Developers.

Manage trusted add-ins for Outlook 2010

Important Security Notes for Microsoft Outlook COM Add-In Developers
 

AlanBru

Member
Outlook version
Outlook 2010 32 bit
Email Account
Exchange Server
Re: "Microsoft Exchange Add-In" (UmOutlookAddin.dll) + Outlook Security Form .

Thanks I've checked all those before posting.




No certificate warnings.


AdminSecurityMode controls whether the form is used or not. We wanted to use it, it's supposed to be perfectly possible (though not ideal).




What I can't understand is that this is Microsoft's own COM add-in that's causing the problem and it's installed as part of Office 2010.


Also, I have other 3rd party COM add-ins (including ones I've written myself) and they give no security warning.


No-where did I have to mention COM add-in names or hashes in the Outlook Security form.
 

larry

Senior Member
Outlook version
Outlook 2010 64 bit
Email Account
Exchange Server
Re: "Microsoft Exchange Add-In" (UmOutlookAddin.dll) + Outlook Security Form .

I believe the warning is due to the fact that the addin is hooking into the address book. Your other addins probably don't.

We use GPO to set security so I've never used the hash method, but it sounds like you install a program, run a file to create the hash then run a bat file to install the hash.

from Manage trusted add-ins for Outlook 2010

To get the hash value for a trusted add-in

1.From the Microsoft Download Center, download the Outlook 2007 Tool: Security Hash Generator (Download Outlook 2007 Tool: Security Hash Generator from Official Microsoft Download Center).

2.Extract the contents to a local folder (such as C:\Hashtool).

3.Run the command prompt for your computer: Click Start, All Programs, Accessories, Command Prompt.

Windows Vista requires an additional step: Right-click Command Prompt, and then select Run as administrator.

4.Change directories to the folder where you extracted the hash tool files.

5.Type the following command, and then press ENTER:

createhash.bat /register

(This step needs to be completed only once.)

6.Type the following command, and then press ENTER:

createhash.bat <filename
Where <filename> is the full path and file name of the add-in file that you are creating the hash number for. There should be no spaces in the file path or file name. If there is, make a copy of the add-in DLL and put it in a folder that has no spaces in the file path or use the short file name and path (8.3 path). The hash is based on the registered DLL and not the location of the DLL.
 
Status
Not open for further replies.
Similar threads
Thread starter Title Forum Replies Date
Commodore Microsoft Exchange Add-in Using Outlook 2
S Adding new Exchange (2016) rule very slow down Microsoft Outlook Exchange Server Administration 0
J Microsoft Exchange Emails - Shared Accounts Exchange Server Administration 3
TotallyConfused Godaddy Microsoft exchange 2007 stopped updating Exchange Server Administration 1
R The action cannot be completed. The connection to Microsoft Exchange is unavailable. outlook must be Using Outlook 1
M connection to the microsoft exchange server has been lost. outlook 2007 Exchange Server Administration 0
J archiving deleted e-mails on Microsoft Exchange Exchange Server Administration 7
J Error: 0X8004010F - Microsoft Exchange offline address book Exchange Server Administration 9
J I use Windows XP with Microsoft Outlook 2003 and I cannot get int the Microsoft Exchange server. Using Outlook 1
M Outlook 2007 "cannot open your default email folders.microsoft exchange is not available" on XP is n Using Outlook 1
R Microsoft Exchange offline address book Using Outlook 5
N Unable to open your default e-mail folders. You must connect to your Microsoft Exchange Server compu Using Outlook 1
D Microsoft Exchange shared contacts not showing up in outlook users with permissions Exchange Server Administration 8
T Setting up Outlook to existing Microsoft Exchange account on new pc with new Windows 7 and new Offic Using Outlook 1
J Outlook 2010 Microsoft exchange server to pop account type switch? Using Outlook 2
S Connection to the Microsoft Exchange Server has been lost. Outlook will restore the connection when Using Outlook 2
F Install the Microsoft Exchange Server MAPI Client and Collaboration Data Objects 1.2.1 on Exchange 2 Exchange Server Administration 7
S Microsoft Exchange Server 2010 Not Receiving External Emails For New Users Created Exchange Server Administration 2
D when trying to get into outlook error message reads connection to microsoft exchange is unavailable. Using Outlook 4
D Sync OAB and Task 'Microsoft Exchange' Fails Error 0x8004010F: The operation failed. An object canno Exchange Server Administration 2
T The Microsoft Exchange Active Directory Topology service on server localhost can't be contacted via Exchange Server Administration 2
D Task "Microsoft Exchange Server" reported error (0x8004010F): 'The operation failed. An object could Exchange Server Administration 3
K Using Microsoft Exchange with Office 2007 conflicts with Office 2010 Home & Student Edition Using Outlook 4
C Unable to open your default e-mail folders. The Microsoft Exchange Server computer is not available. Exchange Server Administration 4
M outlook and comcast business email microsoft exchange server Using Outlook 1
P Does Microsoft Exchange Server EWS support WS-Security standard Exchange Server Administration 3
A Client cannot connect to Microsoft Exchange but POP3 is ok Exchange Server Administration 9
C Microsoft Exchange Replication Service VSS Writer Exchange Server Administration 2
T Problems WinRM on Microsoft Exchange Server 2010 - Showing errors then success messages intermittent Exchange Server Administration 4
B Outlook 2010 unable to connect to a remote Microsoft Exchange 2003 server Using Outlook 8
S How to get more detail on "Microsoft.Exchange.Data.Mime.Encoders.ByteEncoderException" Using Outlook 3
V Your Mailbox Has Been Temporarily Moved On Microsoft Exchange Server____ Using Outlook 1
F Must connect o Microsoft Exchange before you can use your offline folder file (Error msg) Using Outlook 4
V Your Mailbox Has Been Temporarily Moved On Microsoft Exchange Server__ Using Outlook 7
M Unable to start the Microsoft Exchange Speech Engine Service Exchange Server Administration 2
J Can I use just my Hotmail account with Outlook 2007? "The connection to Microsoft Exchange is unavai Using Outlook 2
S Microsoft Exchange is unavailable Using Outlook 2
Y Unable to open your default email folders. The Microsoft Exchange Server computer is not available. Using Outlook 1
J "Clip" icon appear in Microsoft Outlook 2010 / Exchange 2007 OWA Message, but no attachment inside Using Outlook 4
A Failed at Microsoft Exchange On-Premises Exchange Server Administration 3
R Microsoft.Exchange.Net.ExSmtpClient.TlsApiFailureException: A TLS API failure occurred. Error = 0x80 Exchange Server Administration 1
J 'Connection to Microsoft Exchange is Unavailable' for new mail account. Only for one account on PC. Using Outlook 1
A POP3 Service problem in Exchange 2010 (microsoft.exchange.pop3.exe crashes) Exchange Server Administration 7
C connection to microsoft exchange has been restored Exchange Server Administration 3
I Microsoft Exchange message restriction issue Exchange Server Administration 7
B The connection to Microsoft Exchange is unavailable. Outlook must be online or connected to complet Using Outlook 6
J I cannot view public folders in Microsoft Outlook 10. We are using exchange server. Can someone help me? Thanks. Using Outlook 1
S The action cannot be completed. The Connection to Microsoft Exchange is unavailable. outlook must be Using Outlook 2
P Microsoft Exchange 2010 installation problems into an Exchange 2007 environment transport service wi Exchange Server Administration 4
N Connection to Microsoft Exchange has been lost. Outlook will restore the connection when possible Using Outlook 15

Similar threads

Top