Which domain for 3rd Party Certificate for OWA on SBS 2003

We have recently started using OWA over the internet on our SBS 2003 server. I'd like to install a 3rd-party certificate to get rid of the warnings, but I need to check I'm getting the certificate for the correct domain.

The server has the hostname server.mydomain.local

The public URL for OWA is https :// webmail.mydomain.co.uk

As far as I can work out, it's the latter, the subdomain for OWA, that I need to use for the certificate ... but I just need someone to confirm that that's correct!

And will something like the Standard SSL certificate from GoDaddy be suitable?

Thanks
andymilliAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

DLeaverCommented:
For 2003 I would use just the standard SSL certificate for your external domain name https://webmail.mydomain.com this should work fine

No need for UC or SAN cert here
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
tigermattCommented:
As previously indicated, there's no need for a UC or SAN certificate, unless you have other names for other services you'd like to protect (perhaps on different hosts). If you do, you could possibly save money by combining those names onto one certificate.

If you wish to access webmail.mydomain.co.uk from your internal computers (which is quite likely at some point) then you are also going to need to configure split DNS. This ensures webmail.mydomain.co.uk can be resolved internally to the IP of the SBS server. If you use the SBS server's internal DNS name, that will work, but it won't be listed on your certificate, so your users will see certificate errors.

-Matt
0
andymilliAuthor Commented:
Thanks, that has confirmed what I thought. I've now gone ahead with ordering the certificate.

Thanks for the extra information, tigermatt. That's very useful about the split DNS and will probably save me a headache at a later date!
0
andymilliAuthor Commented:
I've now installed the certificate and it is working fine. It also works internally, without the need for spilt DNS.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.