Need help transitioning from SINLLE 2003 Exchange box to a SINGLE 2010 Exchange Box.

I've already ran all the pre-requisites and have everything ready to go but the hardware, which should arrive today or tomorrow.  Super simple setup, single AD forest and domain.  Our internal domain name is the same as our external (mycompany.com).  I've read and re-read the transition steps 20 times already, they seem fairly straightforward, however the one thing that worries me, and that NEEDS to work without any interruption is ActiveSync for mobile devices.  Currently all my mobile devices (iPhones) use ActiveSync to connect to mail.mycompany.com.  I also have a VeriSign SSL certificate for that.

1.) Do I need to purchase ANOTHER SSL certificate for the new Exchange 2010 server to have them coexisting without issue?  

2.) Once I bring this new Exchange 2010 server online and point to mail.mycompany.com during the Exchange install/setup, will all outside and/or mobile clients lose connectivity?

Thanks.
tenoverAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

christsisCommented:
Exchange 2007 and 2010 require UCC certificates so that you can have the subject alternate names for it's configuration. So if you just have a standard SSL with a single name this will not work without a lot of extra configuration.

You'll want to get a new UCC certificate so you can have your mail.mycompany.com, autodiscover.mycompany.com, NETBIOSSERVERNAME, and SERVERNAME.internal.domain

Because of the autodiscover being used for activesync this will be required for a smooth transition.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
tenoverAuthor Commented:
Thanks, so a new cert for everything you said above, and leave the old one running on the Exchange 2003 server until it's dead and gone?
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

christsisCommented:
There's not really much use to the existing certificate unless they'll actually let you completely reissue it to another name and you can use it for something else.

Correct, that Comodo UCC cert will do it.
0
tenoverAuthor Commented:
So this new UCC would cover the 2010 AND 2003 server during coexistence?
0
christsisCommented:
Well yes and no... It will take over when you move the https for mail.mycompany.com to point to the CAS services on the 2010 server.

Since you will only have https://mail.mycompany.com pointing to one server at a time it simply depends on when that changes to point to the new server.

As CAS is pretty much one of the first things to be migrated then the simple answer should be yes.
0
RadweldCommented:
Actually you don't need the netbios name any more but you might need a legacy entry if you intend to setup co-existence during the transition period. Really only larger customers who expect to co-exist for several or more weeks want this but you should consider it just in case you want it.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.