czarubah
asked on
SSL Certificate for Exchange 2003 hosting multiple email
I have successfully installed a Comodo SSL certificate for it-mail.foo1.com, where it-mail is the name of the server.
i have created another email foo2.net and need to provide HTTP over RPC for the clients. When i test the settings using it-mail.foo1.com everything works. When I test it-mail.foo2.com I get an error indicating that the name in the SSL does not match.
My question is do I need to buy a certificate for it-mail.foo2.net or should i change my current certificate for just it-mail.*
thanks.
i have created another email foo2.net and need to provide HTTP over RPC for the clients. When i test the settings using it-mail.foo1.com everything works. When I test it-mail.foo2.com I get an error indicating that the name in the SSL does not match.
My question is do I need to buy a certificate for it-mail.foo2.net or should i change my current certificate for just it-mail.*
thanks.
ASKER
thanks for the comment, but the recommendation is not a solution. Looking for alternative solutions now. Exchange is no the only email product in the market.
Huh?
I have given you a recommendation to resolve your SSL problem, because the "solution" you want doesn't exist.
While Exchange is not the only email solution on the market, it is far and away the largest for enterprises. I am migrating clients off the other solutions at a very rapid rate, including one of Google's headline customers.
Simon.
I have given you a recommendation to resolve your SSL problem, because the "solution" you want doesn't exist.
While Exchange is not the only email solution on the market, it is far and away the largest for enterprises. I am migrating clients off the other solutions at a very rapid rate, including one of Google's headline customers.
Simon.
ASKER
close this question is dead. Buying a new Exchange is not in the budget
ASKER
I've requested that this question be closed as follows:
Accepted answer: 0 points for czarubah's comment #a40815493
for the following reason:
the expert had good ideas but did not have a proper response.
Accepted answer: 0 points for czarubah's comment #a40815493
for the following reason:
the expert had good ideas but did not have a proper response.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Objection noted. Still no solution provided. Recommendation is not a "solution", it may be an option that depends on many other factors but one principal. Budget.
How can i grade higher that B when I had to look for alternate sources to my question because the expert made "recommendations" that are/were not applicable?
in any case the point is moot as at this time as i had posted earlier, migrating to a different solution was my solution. and in that case i agree with the expert exchange 2003 is obsolete.
How can i grade higher that B when I had to look for alternate sources to my question because the expert made "recommendations" that are/were not applicable?
in any case the point is moot as at this time as i had posted earlier, migrating to a different solution was my solution. and in that case i agree with the expert exchange 2003 is obsolete.
That doesn't exist. You cannot have a wildcard certificate for a host name, otherwise scammers would have one for www.* and they would not be any security.
On Exchange 2003 there is no connection between the host name and the email address. Therefore just use the same host name for all domains. If there is some political push back, then use a generic name instead for the host name.
You could use a UC (unified communications) certificate, as used on Exchange 2007 and higher. However Exchange 2003 can have some issues with names other than the common name.
Really for multiple domain hosting, you should be moving off Exchange 2003. It is a very old product and really isn't fit for purpose much longer.
Simon.