its2itgroup
asked on
Exchange SSL certificate for OWA
Hi,
I need to secure the access to Exchange 2007 OWA website using Verisign SSL certificate.
I have 2 CAS servers on active/active mode.
Do I need one SSL certificate or 2 in this case?
I need to secure the access to Exchange 2007 OWA website using Verisign SSL certificate.
I have 2 CAS servers on active/active mode.
Do I need one SSL certificate or 2 in this case?
ASKER
Hi simon,
I will use VeriSign certificate.
As per Verisign, they said that I will need a certificate for each server.
https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=SO2048&actp=search&viewlocale=en_US&searchid=1270892072823
As per Microsoft, i need only one.
http://technet.microsoft.com/en-us/library/cc164344(EXCHG.80).aspx
I do not think the wildcard option is valid because i will use the same name for both of the server.
I will use VeriSign certificate.
As per Verisign, they said that I will need a certificate for each server.
https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&id=SO2048&actp=search&viewlocale=en_US&searchid=1270892072823
As per Microsoft, i need only one.
http://technet.microsoft.com/en-us/library/cc164344(EXCHG.80).aspx
I do not think the wildcard option is valid because i will use the same name for both of the server.
Commercially speaking verisign will ask you to buy two certificates. However, you can have only one certificate.
Generate it on one CAS server, Install the same. Then you can always export it and install it on the other CAS server. Since the URL for both the servers will be the same, the certificate will work fine.
However you need to have a check on the policies of verisign of using the certificate in this way!
Generate it on one CAS server, Install the same. Then you can always export it and install it on the other CAS server. Since the URL for both the servers will be the same, the certificate will work fine.
However you need to have a check on the policies of verisign of using the certificate in this way!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Or, you can get a wildcard certificate, which you can use on both.
Other option is to use a SAN (subject alternate name certificate).
Do you want to use a public or private CA?