OWA (Exchange 2003) Certificate Question

Posted on 2010-01-11
Medium Priority
Last Modified: 2012-05-08

We have to OWA servers there is no NLB. For now we use NAT and a firewall rule two switch between them if something happens with one of the servers.

We have a certificate in OWA1 that works fine. The certificate it was issued to: webmail.domain.com. Could we use the same certificate on OWA2? Is there anyway to export the certificate to the other OWA server? If not what do we have to do to have OWA2 running with a certificate?

Question by:llarava
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
LVL 16

Expert Comment

ID: 26283723
If you have 2 servers any reason why you dont want to go with a front end / backend exchange solution?

There may be certain instances in which the SSL certificate must be moved from one server to another. A SSL certificate is bound to the server software and the common name. This will take place via an export and import process. Therefore, the certificate and its corresponding private key may be exported from the original server and imported into the target server as long as both servers run the same server software (i.e. Microsoft IIS to Microsoft IIS) and the target server will be hosting a site that matches the common name.
If multiple servers are being used, you will need to purchase 1 license for every server being secured


LVL 16

Accepted Solution

Raheem05 earned 2000 total points
ID: 26283780
Of course if you are using the second server as a DR server then the front end / backend is out of the window in simple terms yes follow the above procedure the common name unless the certificate is tied to a specific hostname


Hope this helps any questions shout

Author Comment

ID: 26285078

You got it. This is the tpye of scenario we are running here. Export/Import did the trick since the certificate is not tied up to the server hostname instead we are used the cname "webmail.domain.com" which will be the one that the external DNS server will resolve into the OWA server that is the one active at that point in time.

One more question if we decided to setup NLB what would be the case with the certificate?
LVL 16

Expert Comment

ID: 26285116

It will work fine because its bound by the common name I would just check the certificate to make sure it does not violite terms and conditions of the original purchase (the company you purchased the SSL to make sure it can be used on more then 1 server at any time) just thought you should be aware but in a nutshell it will work fine :)

Author Closing Comment

ID: 31675502

Featured Post

Get proactive database performance tuning online

At Percona’s web store you can order full Percona Database Performance Audit in minutes. Find out the health of your database, and how to improve it. Pay online with a credit card. Improve your database performance now!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As tax season makes its return, so does the increase in cyber crime and tax refund phishing that comes with it
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question