asked on Different Certificates for ActiveSync and OWA (Exchange 2010)
Hi there,
I was wondering if it was possible to use two different certificates and URL's for Activesync and OWA in Exchange 2010.
I want to use the following URL's:
- webmail.domain.com
- sync.domain.com
I have created two certificates with a public CA but found out that you can only apply 1 certificate to a service.
The reason why i want to do this is simple, we want users to authenticate with username, token and password for OWA and not for the activesync connection.
Any thoughts on this problem?
I was wondering if it was possible to use two different certificates and URL's for Activesync and OWA in Exchange 2010.
I want to use the following URL's:
- webmail.domain.com
- sync.domain.com
I have created two certificates with a public CA but found out that you can only apply 1 certificate to a service.
The reason why i want to do this is simple, we want users to authenticate with username, token and password for OWA and not for the activesync connection.
Any thoughts on this problem?
Exchange
Last Comment
Netwerkbeheer_AZL
They both use IIS (active sync and OWA) so NO you cant have two differnet certificates - unless you install a second client access server.
yes, you will need to create a new web site on the server then add the virtual directory
new-activesyncvirtualdirec
new-activesyncvirtualdirec
you can create a new website and then create a new activesync directory under it
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
The easiest way to do it is to replace your 2 certificates with one SAN (or UCC) certificate,
a SAN = Subject Alternate Name is a certificate that is used to identify more than one URL and it is very well supported in exchange 2007/2010
Just get a SAN certificate with all your needed URLs and enable it in Exchange
a SAN = Subject Alternate Name is a certificate that is used to identify more than one URL and it is very well supported in exchange 2007/2010
Just get a SAN certificate with all your needed URLs and enable it in Exchange
ASKER
Thnx, the SAN certificate worked ;)