vmich
asked on
Certificate for exchange 2010 server question
We currenlty have a certificate that is getting ready to expire. Our domain name is in this format:
domain
So since the .local is not allowed any longer in the certificate, I found a link on how to change the exchange autodiscover, etc items that need to be changed to the internal urls to be the same as the external urls.
Our cert now has the 2 exch server names in it like this:
server1.domain
server2.domain
Do I even need to have these as part of my certificate since I have to remove them because of the .local
domain
So since the .local is not allowed any longer in the certificate, I found a link on how to change the exchange autodiscover, etc items that need to be changed to the internal urls to be the same as the external urls.
Our cert now has the 2 exch server names in it like this:
server1.domain
server2.domain
Do I even need to have these as part of my certificate since I have to remove them because of the .local
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You cannot put a raw domain (ie one without a suffix) on the SSL certificate. That simply isn't allowed.
In simple terms, all names on the SSL certificate MUST resolve on the internet. host.domain would not resolve, so wouldn't be allowed.
Simon.
In simple terms, all names on the SSL certificate MUST resolve on the internet. host.domain would not resolve, so wouldn't be allowed.
Simon.
ASKER
Simon,
My question is will it be an issue if I leave off the 2 servers names.domain since there domain name now is still a .local domain name since the certificate companies dont allow the .local names on the certs?
Meaning will it affect exchange at all?
My question is will it be an issue if I leave off the 2 servers names.domain since there domain name now is still a .local domain name since the certificate companies dont allow the .local names on the certs?
Meaning will it affect exchange at all?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes I will be changing all of the internal urls to match the external urls and all of the virtual directories...
ASKER
new cert
ASKER
But as i mentioned the domain name is domain
So that is a .local which the cert has the 2 exchn servers in it which are server1.domain and server2.domain
So do I need these in the exchange cert?