SSL and Mail
Does my UCC SSL need to have my domain name alone? When it was setup it included the domain root. Right now I have
autodiscover.XXX.com
mail.XXX.com
exchange.XXX.com
and
XXX.com
Do I need the XXX.com, seems that it causes problems sometimes?
I am renewing for my website which I www.XXX.com and XXX.com. Same domains.
autodiscover.XXX.com
mail.XXX.com
exchange.XXX.com
and
XXX.com
Do I need the XXX.com, seems that it causes problems sometimes?
I am renewing for my website which I www.XXX.com and XXX.com. Same domains.
You could create at wildcard certificate *.xxx.com. If you did that you could use it for anything .xxx.com related. I have used these in the past without issues.
ASKER
I could do that on the UCC but my UCC is my exchange certificate and I only want it to be my exchange certificate. I have a different certificate for my website. I then have a separate certificate for my VPN. So do I need to have xxx.com on all?
Wouldn't putting *.domain.com on any of them cause a conflict between them?
Or should I have them separate?
mail.domain.com, autodiscover.domain.com, and server.domain.com on the UCC, vpn.domain.com on the VPN, and then www.domain.com and domain.com on the SSL for the web?
Wouldn't putting *.domain.com on any of them cause a conflict between them?
Or should I have them separate?
mail.domain.com, autodiscover.domain.com, and server.domain.com on the UCC, vpn.domain.com on the VPN, and then www.domain.com and domain.com on the SSL for the web?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You could also use SAN certificates, Subject Alternative name, that way you can use multiple host names for the same cert.
Using a SAN certificate saves you the hassle and time involved in configuring multiple IP addresses on your Exchange server, binding each IP address to a different certificate.
Using a SAN certificate saves you the hassle and time involved in configuring multiple IP addresses on your Exchange server, binding each IP address to a different certificate.