SSL for my new SBS2011

I have a new SBS2011 setup and I want to Add a trusted Certificate for my users to use for their RWW.
I'm using the task pad in Windows Small Business Server 2011 Standard Console

When I select "Add a trusted certificate"
I use "I want to buy a certificate from a certificate provider"

This wizard automatically fills in the following information
I’m going to use organization name abc123.org as an example:

"Verify the information for your trusted certificate"
Issued To:
remote.abc123.org

Organization:
Abc123 Organization

Country:
US

State/Province:
CA

City:
ABC

Why does it add remote. prefix?
does this mean my user will use https://remote.abc123.org tp log in?

If I change it to
Issued To:
abc123.org  (instead of remote.abc123.org)

what wil my users browse to?
https://abc123.org/remote ?
LVL 1
jsarinanaI.T. ManagerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Cliff GaliherCommented:
When you run the internet address wizard and select the name, that wizard adds 'remote.' to the beginning by default. You sre given the option to change it in the wizard.


The certificate wizard simply reads the setting used in the internet address wizard. If you change the name jn the certificate wizard, you *will* break things. The internet address wizard has already configured IIS and Exchange to use remote.* so you'd have a name mismatch.

As far as why that is a default , most people want abc123.com to go to their public website as shortened version of www.abc123.com. There is no good way to have abc123.com point to a public web host *and* have abc123.com/remote point to a different server, since both key off the DNS record for abc123.com. Using remote.abc123.com allows for a different distinct DNS record so the usage can be cleanly separated.

Now as a reminder, the remote.* is just a default. You can rerun the internet address wizard and change the default. But you cannot have abc123.com point to one server and abc123.com/remote point to another. That is a limitation of DNS and is bot unique to windows or SBS.

You could set up a redirect on your public website (if you have one) that tells a browser visiting abc123.com/remote to redirect to remote.ahc123.com, and some folks do this. But for that scenario, your remote site is still technical remote.abc123.com so you wouldn't rerun the internet address wizard and you *would* want the certificate name to be remote.abc123.com since that is what the browser will eventually get redirected to.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jsarinanaI.T. ManagerAuthor Commented:
Thanks Cliff
got it
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SBS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.