asked on

Need help transitioning from SINLLE 2003 Exchange box to a SINGLE 2010 Exchange Box.

I've already ran all the pre-requisites and have everything ready to go but the hardware, which should arrive today or tomorrow. Super simple setup, single AD forest and domain. Our internal domain name is the same as our external (mycompany.com). I've read and re-read the transition steps 20 times already, they seem fairly straightforward, however the one thing that worries me, and that NEEDS to work without any interruption is ActiveSync for mobile devices. Currently all my mobile devices (iPhones) use ActiveSync to connect to mail.mycompany.com. I also have a VeriSign SSL certificate for that.

1.) Do I need to purchase ANOTHER SSL certificate for the new Exchange 2010 server to have them coexisting without issue?

2.) Once I bring this new Exchange 2010 server online and point to mail.mycompany.com during the Exchange install/setup, will all outside and/or mobile clients lose connectivity?

Thanks.

ASKER CERTIFIED SOLUTION

christsis

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

tenover

ASKER

Thanks, so a new cert for everything you said above, and leave the old one running on the Exchange 2003 server until it's dead and gone?

tenover

ASKER

One of these bad boys, right?
http://www.comodo.com/business-security/digital-certificates/unified-communications.php?key5sk1=3d21d78cc3096e3d42dcd84717ce4fad07ae321f&key5sk2=&key5sk3=1323179216000&key5sk4=&key5sk5=1323179229000&key5sk6=&key5sk7=1323179238000&key6sk1=&key6sk2=FF80&key6sk3=7&key6sk4=en-us&key6sk5=US&key6sk6=0&key6sk7=http%3A%2F%2Fwww.comodo.com%2F&key6sk8=103183&key6sk9=19201200&key6sk10=true&key6sk11=8289202f35ccf4c1575563d3e8aa35a889872782&key7sk1=2&key7sk2=2&key7sk3=29

christsis

There's not really much use to the existing certificate unless they'll actually let you completely reissue it to another name and you can use it for something else.

Correct, that Comodo UCC cert will do it.

tenover

ASKER

So this new UCC would cover the 2010 AND 2003 server during coexistence?

christsis

Well yes and no... It will take over when you move the https for mail.mycompany.com to point to the CAS services on the 2010 server.

Since you will only have https://mail.mycompany.com pointing to one server at a time it simply depends on when that changes to point to the new server.

As CAS is pretty much one of the first things to be migrated then the simple answer should be yes.

Radweld

Actually you don't need the netbios name any more but you might need a legacy entry if you intend to setup co-existence during the transition period. Really only larger customers who expect to co-exist for several or more weeks want this but you should consider it just in case you want it.