SBS2011 Exchange 2010 WP7.5: Which certificate do I need?

Posted on 2012-08-24
Last Modified: 2014-11-12
I am in the phase of replacing a SBS2008 / Exchange 2007 environment with Windows Phone 7.5 connections.
Incomming connections other than smtp and https for the WP7.5 are all using VPNs terminated at the corporate router.
I installed a GoDaddy UCC certificate directly in the IIS  in the SBS2008.
The windows phone work perfectly including the autodiscover function.

I set up now a new SBS 2011 from scratch with the same internal/external domain names and not using the migration szenario but rebuilding the domain and transferring the data manually. Only smtp and https is needed for mail and WP7 pushmail.

How would you suggest to proceed with the existing UCC certificate? Should I try to reinstall it on the new server?
Or would a new standard certificate of GoDaddy using the SBS wizard in SBS2011 be sufficient to make the Windows phones 7.5 autodiscover and pushmail working?

Thanks for your thoughts!
Question by:Andreas200
    LVL 77

    Expert Comment

    by:Rob Williams
    You don't need a UCC cert for SBS, it is bloged in the following link as to how to obtain and install a single name cert and configure autodicovery with SRV records.

    Using your existing UCC cert would require rekeying by the certificate provider.
    LVL 63

    Expert Comment

    by:Simon Butler (Sembee)
    Ideally you need a UCC certificate.
    The common name would be
    The additional name would be

    Do the certificate request and install through Exchange 2010, but don't add any services. Then use the SBS wizard to enable the existing certificate. Job done.

    If you use as your MX record as well, then you get SMTP over SSL (aka TLS).

    If you have a certificate that is already able to take multiple names with time left on it, then do a REKEY through the GoDaddy system, using a new request from the SBS 2011 server, then follow what I have written above to actually activate it.


    Author Comment

    Thanks Rob!

    what would you suggest as easier: rekeying or buying a single name cert?
    LVL 77

    Expert Comment

    by:Rob Williams
    At $12.99 and with simple install a new certificate is probably easier and you can leave the existing cert in place until the new server is on-line.

    Author Comment

    Thank again,

    which provider sells it for 12.99?
    LVL 77

    Accepted Solution

    On the link I provided there is an add for Godaddy (my web site)  click on that and you will get the $12.99 price if you select single name and 1 year.  I put it there as the link keeps changing.  I'm not trying to persuade you so I get a 10¢ commission as I cannot even collect since I am not a US resident, but it's a good deal.  Has to be a new account, i.e. a new user name or e-mail address to create the account, but can be an existing domain.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    "Migrate" an SMTP relay receive connector to a new server using info from an old server.
    Easy CSR creation in Exchange 2007,2010 and 2013
    This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
    In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now