I could be wrong, but it is my understanding that MS servers are able to switch from secure (HTTPS by SSL servers) to plain HTTP "at will". My guess is that if the client cannot connect securely it will go the other way.
Are we talking about the same thing?