Publishing Exchange 2007 Outlook Web Access and Activesync using different URLs/FQDN

I need to publish activsync for mobile phones, and outlook web access using different authentication mechanism, thus needing different web listeners and different public IP-addresses.

btw - I'll publish using Forefront TMG 2010

But now I need to be able to publish exchange using two different URLs/FQDNs, preferably on different web sites - so i can use two ordinary certificates.

explaind:
mobile.domain.edu - for Active sync, web listener on public IP: 80.80.80.80
owa.domain.edu - for Outlook web access, web listener on public IP: 80.80.80.81

But doing this on the same web site, I'll need a UC/SAN certificate, I already have a plain SSL certificate, and would prefer to buy just a new SSL and use with the other URL.

Is this possible, or is it easier to deploy UC/SAN certificates? and if so - any experience with certificatesforexchange.com ?
LVL 22
Jakob DigranesSenior ConsultantAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

endital1097Commented:
it is easiest to deploy this using a UC/SAN certificate
there are many solutions in experts exchange covering this topic
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
trial1982Commented:
Well if you woulden't mind using the same name for both urls, it did be also easier as well.
0
Jakob DigranesSenior ConsultantAuthor Commented:
cannot use the same name, as I have different web listeners and different public IPs ..
Looking into UC/SAN cert from certficatesfromexchange.com -
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

simonlimonCommented:
Why don't you use SSL-bridging? You terminate the SSL on the TMG, forward the requests to the Exchange which is also SSL secure but with its own certificate. External clients only access the external URL.

You would use just one certificate on the Exchange.

Create a publishing rule for Activesync and OWA, creating a listener for each with its certificate. If you are feeling adventorous you can use a SAN certificate on the TMG and publish using one listener and 1 IP. You would use the same listener for different publishing rules.
0
Jakob DigranesSenior ConsultantAuthor Commented:
Thanks --- proved to be the easiest way,
0
Jakob DigranesSenior ConsultantAuthor Commented:
certificatesforexchange.com

Cheap - but a rather odd way of confirming the domain

at least, now it works.
Up and running with active sync for mobile phones, and webmail with swivel pinsafe and AD username two factor
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.