Purchased a cert for our domain - "mail.domain.com", looks like I need one for "autodiscover.domain.com" is that correct? Created an 'A' record to resolve externally.
Second part - after installing the new cert, internally I am getting a certificate error when launching Outlook. Configured a DNS entry internally - "autodiscover.domain.local"
Error = The name on the security certificate is invalid or does not match the name of the site. Guessing bec the new cert is for "mail.domain.com"
Can I create a new one within Exchange to handle internal users and if so how or do I have to purchase a SAN cert?