Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

ISA 2006 SSL

Posted on 2009-04-06
2
Medium Priority
?
648 Views
Last Modified: 2012-05-06
We have an ISA 2006 server sitting in our DMZ, we have a MOSS 2k7 server, a IIS 6.0 server and IIS 7.0 server we have two internet domain names xxx.com.au xxxx.com.au.  These  websites are served from our iis 7.0 box. however there are a number of A records for these two I.e. xx.xxx.com.au xy.xxx.com.au xx.xxxx.com.au and xy.xxxx.com.au these are used in web publishing rules for various web applications from different servers. I.e. Hot Docs / Bugzilla/ among others.

Now for my question: the ISA server is used for all of these, can I secure external traffic whilst keeping http for internal utilising one ssl certificate, my boss wants this because he doesnt want to purchase numerous Verisign Certs to achieve this.(We have to use Verisign for political reasons.)

My thougts are that even if verisign offered a wildcard certificate which it appears they dont, the multiple .com.au's would mean at least two certs would be required.

Please let me know your thoughts.

Regards,

Carl
0
Comment
Question by:carlnys
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 

Author Comment

by:carlnys
ID: 24083259
Oops... Missed that one Verisign do wildcard ssl certs, however much of the question remains valid, can you secure communication externally from an ISA box with one generic certificate?

Regards,

Carl
0
 
LVL 17

Accepted Solution

by:
OriNetworks earned 2000 total points
ID: 24083716
This is possible with ISA with one certificate. The verisign product you are looking for is called a SAN SSL. Subject Alternative Name SSL http://www.verisign.com/ssl/buy-ssl-certificates/subject-alternative-name-certificates/
You would use this SSL to publish your sites through ISA as normal. There are many guides out there to help you set this up and the ISA wizard is pretty self explanatory.
0

Featured Post

Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Forefront Threat Management Gateway 2010 or FTMG comes with some very neat troubleshooting tools built-in when trying to identify what is actually happening behind the scenes within the product when traffic is passing through its interfaces. To the …
#SSL #TLS #Citrix #HTTPS #PKI #Compliance #Certificate #Encryption #StoreFront #Web Interface #Citrix XenApp
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question