vmich
asked on
would selection be the same for cert for exch 2013 coming from 2007
Upgrading exch from 2007 to 2013 and was wondering if my names would all be the same for the 2013 as we had on the 2007 server?
We are keeping the outside urls the same for the 2013 as they were on the 2007.
So I have 6 names now on the 2007 and was wondering if the 2013 would be the same number?
We are keeping the outside urls the same for the 2013 as they were on the 2007.
So I have 6 names now on the 2007 and was wondering if the 2013 would be the same number?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
1. Common name would be your external dns record name i.e mail.domain.com
2. This should have nothing to do with the certificate - You do not need autodiscover to deliver mails for the old domain. As long as the old domain name MX record is pointing to the Common name and is set as accepted domain in exchange 2013 you should be good.
2. This should have nothing to do with the certificate - You do not need autodiscover to deliver mails for the old domain. As long as the old domain name MX record is pointing to the Common name and is set as accepted domain in exchange 2013 you should be good.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Simon,
Yes we are migrating all at once from 2007 to 2013 in the same day..
So shouldI just go with the names that are seen by the 2013 from the 2007, bascically the same ones that were on the cert for 2007?
Yes we are migrating all at once from 2007 to 2013 in the same day..
So shouldI just go with the names that are seen by the 2013 from the 2007, bascically the same ones that were on the cert for 2007?
If, and it is a big if, users are not going to be allowed to connect during the coexistence period, then you can use the same certificate with the same names. Use the same external name internally via split DNS (so eliminating the use of the server's real name).
If you aren't limiting users access then they will be unable to get access because you will have a confused Exchange environment and clients. The URLs set on the server are used by Autodiscover and Exchange to route the clients to the correct server. If both servers are set the same then you will have clients on the "wrong" server (ie the one which the DNS is NOT pointing to) unable to connect.
Simon.
If you aren't limiting users access then they will be unable to get access because you will have a confused Exchange environment and clients. The URLs set on the server are used by Autodiscover and Exchange to route the clients to the correct server. If both servers are set the same then you will have clients on the "wrong" server (ie the one which the DNS is NOT pointing to) unable to connect.
Simon.
ASKER
cert selections
ASKER
I guess I just need to know 1, which name do I select for the common name on the 2013 when generating the cert request and 2, we had 1 email domain name and now added a second one which is the main email domain but we still have both, in case users still send to the old name, so do I need to add both names to the cert for autodiscover?