Exchange 2010 Godaddy SSL Cert

I am getting ready to start an Exchange 2003 to Exchange 2010 migration.  We currently have a godaddy standard ssl cert installed on our Exchange 2003 server.  Our AD domain users a name with ".local".

I just want to ensure there are no issues with owa access, Outlook/exchange discovery, etc.

The current cert does not expire until mid 2015.  

Can I use this same standard certificate or do I need to renew for another one, etc?

Do you foresee any potential issues that would affect the migration or post migration?
cmp119IT ManagerAsked:
Who is Participating?
 
Alan HardistyConnect With a Mentor Co-OwnerCommented:
There won't be any problems - trust me.

I manage dozens of SBS / Exchange servers and all they have in their SSL certs nowadays are mail.domain.com and autodiscover.domain.com and they are all .local internal domain names!   Our own domain is also exactly the same and we have an Exchange 2010 server internally.
0
 
MutogiIT ManagerCommented:
The .local within a year can not be used on UCC SSL which is needed for 2010.

youll need to reissue for 2010, atleast for OWA traffic on external email.
0
 
Alan HardistyCo-OwnerCommented:
You won't be able to use a .local SSL certificate with Exchange 2010 because that name won't resolve publicly, so you would need to buy a new SSL certificate and buy a SAN / UCC SSL certificate.

Make sure you ad mail.domain.com (or whatever you want to use instead of mail. and also autodiscover.domain.com)

Alan
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
cmp119IT ManagerAuthor Commented:
Let's say my current godaddy SSL certificate is for mail.xyz.com, and when I renew the certificate how would it be ordered?  

I need specifics as to I want to ensure minimal problems ordering it and installing it on the exchange 2010 server.  I also do not want to cause any issues with Outlook clients communicating with this mail server.  OWA should also be able work with the new certificate as well.

Thanks.
0
 
Alan HardistyCo-OwnerCommented:
Buy a SAN / UCC SSLS cert and add the names:

mail.xyz.com and
autodiscover.xyz.com

you won't be able to renew the existing SSL certificate because that is likely to be a Single Name SSL certificate because that was all that Exchange 2003 needed.

OWA will work happily with a cert with mail.xyz.com in it.
0
 
cmp119IT ManagerAuthor Commented:
So let's say the AD domain is chap.local and the public mail domain is @xyz.com and the  mx record is mail.xyz.com.  With this information how would the SSL certificate be ordered?

Also, how would this affect Outlook clients needs to communicate with the local Exchange 2010 server, etc?
0
 
Alan HardistyCo-OwnerCommented:
Exactly as I have already said.  You can't order a domain with a .local name in it any more (unless the cert expires before Nov 2015), but you can tweak exchange to tell it to look at the xyz.com domain name instead of the .local domain name for .local internal domains.
0
 
cmp119IT ManagerAuthor Commented:
Alen - I just saw your response.  I presume I do not need to worry about adding servername.xyz.local.

I am concerned local outlook clients may have issues with this certificate for some reason.  I just don't want to deal with outlook clients issues that could possibly be related to an installed SSL Cert.
0
 
cmp119IT ManagerAuthor Commented:
Thank you for the clarification Alan!!!!
0
 
cmp119IT ManagerAuthor Commented:
Let me ask, do you have any documents you can send me pertaining to installing Exchange 2010 on a Windows Server 2012 VM.  I am currently using a document by the name of "Rapid Transition guide from Exchange 2003 to Exchange 2010, but it pertains to Windows Server 2008 R2 specifically.  Not sure what sort of snags I may run into with Windows Server 2012 as a VM.
0
 
Alan HardistyCo-OwnerCommented:
This link looks like it should help you (I don't have any articles myself):

http://oxfordsbsguy.com/2013/03/24/how-to-install-exchange-2010-sp3-on-windows-server-2012/

Alan
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.