Solved

Exchange 2010 SSL Certificate Renewal, no Subject Access Names allowed for internal domain names.

Posted on 2014-09-09
2
237 Views
1 Endorsement
Last Modified: 2014-09-09
Hi,

Up until recently GoDaddy have allowed local names in their SAN for SSL certificates. This meant we could have

external-ex01.ourcompany.com/owa

and

internal-ex01.ourcompany.local/owa

on the same certificate. Unfortuantely CA's have now preventing the renewal on SANs that are not FQDN. We have created Self-Signed Exchange 2010 certificates with the local names and rolled them out to our users via GPO. However Outlook 2010 is still looking at the SSL certificate for the external names.

How do we resolve this?
1
Comment
Question by:SimonBrook
2 Comments
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 40312107
This is a very common problem and easily resolved.
You just need to use the external host name internally via a split DNS system.

http://semb.ee/hostnames2010

Forget about using self signed certificates, waste of time.

Simon.
0
 
LVL 1

Author Closing Comment

by:SimonBrook
ID: 40312116
Thanks for this!
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
Read this checklist to learn more about the 15 things you should never include in an email signature.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now