IBM Lotus Notes/Domino 8.5 Forum (includes Lotus Notes Traveler)
Certify at a higher level
Although this may be too late, the solution to this problem is to not cross certify at the issued SSL certificate level (eg, your "*.company.com" certificate) but to cross certify at the issuing certificate level (eg, "Verisign Class 3 Secure Server GA").
Once that's done, you can push the internet cross certificate down to your clients through a Security desktop policy (Keys & Certificates tab, Administrative Trust Defaults section).
Feedback response number WEBB8U5KJK created by David Bunn on 05/09/2012