jatkins-ccn
asked on
Exchange 2010 Certificate
Should I remove the Microsoft certificate for exchange I have a 3rd party certificate in place. I am getting an error name on certificate is invalid. I believe the certificate may be causing other problems with active sync.
ASKER
These are the name in my certificate
mail.domain.com
WWW.mail.domain.com
autodiscover.domain.com
domain.com
mail.domain.com
WWW.mail.domain.com
autodiscover.domain.com
domain.com
Okay - what is your internal domain name?
ASKER
CCN.local is the internal domain
The names you should include in your SSL certificate are:
mail.domain.com
autodiscover.domain.com
server.CCN.local
server
With those names included - you shouldn't get any certificate errors popping up.
Best bet it to re-key your SSL certificate.
mail.domain.com
autodiscover.domain.com
server.CCN.local
server
With those names included - you shouldn't get any certificate errors popping up.
Best bet it to re-key your SSL certificate.
ASKER
OK, when I run the wizard for creating a new exchange certificate, I get confused weather I should use a wild card certificate or not. On the exchange certificate page should where should I add server? It is not clear to me.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank You I will give it a try and let you know how it went.
ASKER
Thanks for the help. In getting my certificate, I found out after November 1, 2015 my Certificate provider does not allow internal domain names in the certificate. We had bought a 5 year certificate. So we went back to a 3 year certificate and everything is working. I'm not sure how we will handle this in 3 years. If you have any ideas?
ASKER
Thanks for all the help.
Split Brain DNS is the answer for the future apparently!
What names are included in your SSL certificate?