Solved

Upgrading from Exchange 2003 to Exchange 2010 - SSL Help

Posted on 2013-06-18
4
266 Views
Last Modified: 2013-07-12
I'm in the midst of an exchange migration. I have server A running exchange 2003. My new Server B is now running exchange 2010. Same domain. Today I pointed my firewall to server B. Mail is flowing in and out pretty good with outlook. I can send internally and externally. However, I'm having some issue with Apple products (iphones and ipads) this afternoon.

Server A has an SSL cert, Server B currently does not. Can I use the same SSL cert that is on Server A and install it on Server B?

Both servers are configured for the same mx, mail.company.com.
0
Comment
Question by:NetAdmin2436
  • 2
4 Comments
 
LVL 18

Accepted Solution

by:
suriyaehnop earned 400 total points
ID: 39258154
I would like to advice you to purchase SAN/UC Certificate from public certificate authority. Current your Exchange 2010 used the self sign certficate right. For testing purpose, you may export it and install on Iphone/Ipad. If it is working, you may proceed to purchase public certificate.

http://www.digicert.com/subject-alternative-name.htm
0
 
LVL 63

Assisted Solution

by:Simon Butler (Sembee)
Simon Butler (Sembee) earned 100 total points
ID: 39259262
You can use the existing SSL certificate if it is a trusted certificate IF your external DNS provider supports SRV records.

You will need to modify Exchange 2010 to use that host name:
http://semb.ee/hostnames

Be aware that you will have no coexistence, so as soon as you move the certificate and host name to Exchange 2010, anyone not on 2010 will be unable to get at their mailbox remotely until moved to Exchange 2010.

Simon.
0
 
LVL 12

Author Comment

by:NetAdmin2436
ID: 39266989
For now I have pointed the firewall back to the old email server. After a thunderstorm knocked out power to our buildings I have a few fires to put out first. Our salesmen were too antsy to get their iphones backup. Thanks for your help so far though. SSL certs are not my cup of tea and I'm still trying to get familiar with exchange 2010.

to be continued....
0
 
LVL 12

Author Closing Comment

by:NetAdmin2436
ID: 39321539
Thanks for your help. I did end up buying a SAN/UC Certificate from DigiCert. They were pretty helpful when I called them up.

For what it's worth, our old SSL certificate was from Symantec. I first tried calling them asking for help, but they were not too helpful.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

What does UTC stand for?  “Coordinated Universal Time” – Think of this as the true time on Planet Earth that never changes with the exception of minor leap seconds here and there to account for the changes in the planet's rotation.   What does th…
Are you unable to connect or configure Hotmail email account in Microsoft Outlook 2010, 2007? Or Outlook.com emails are not downloading to Outlook? Lets’ see the problem and resolve Outlook Connector error syncing folder hierarchy (0x8004102A).
This video discusses moving either the default database or any database to a new volume.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now