asked on
Exchange 2013 Certificate Requrement
Hello All,
We are planing to deploy exchange 2013 servers. currently we have 3 domains. Contoso.con, abc.com and xyz.com.
we have mailboxes from all above 3 email address (Primary email). Should i want to add autodiscover.contoso.com, autodiscover.abc.com and autodiscover.xyz.com ?
We are planing to deploy exchange 2013 servers. currently we have 3 domains. Contoso.con, abc.com and xyz.com.
we have mailboxes from all above 3 email address (Primary email). Should i want to add autodiscover.contoso.com, autodiscover.abc.com and autodiscover.xyz.com ?
ExchangeSSL / HTTPSEmail Servers
Last Comment
Manikandan Narayanswamy
Hi,
Here is link for configuring SAN certificates for exchange 2013.
https://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2013.htm
https://www.digicert.com/csr-creation-microsoft-exchange-2013.htm
Thanks
Manikandan
Here is link for configuring SAN certificates for exchange 2013.
https://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2013.htm
https://www.digicert.com/csr-creation-microsoft-exchange-2013.htm
Thanks
Manikandan
ASKER
NO.
i don't have 3 Exchange Servers. One exchange Server having 3 mail domains.
i don't have 3 Exchange Servers. One exchange Server having 3 mail domains.
Hi,
In that case you have to use Split brain DNS mechanisms along with SAN Certificate. And as you mentioned that you are having mailboxes from all the three domains. You need to add all of the following autodiscover.contoso.com, autodiscover.abc.com and autodiscover.xyz.com in the SAN certificate for proper autodiscover to work properly.
http://www.msexchange.org/articles-tutorials/exchange-server-2013/management-administration/managing-certificates-exchange-server-2013-part1.html
Thanks
Manikandan
In that case you have to use Split brain DNS mechanisms along with SAN Certificate. And as you mentioned that you are having mailboxes from all the three domains. You need to add all of the following autodiscover.contoso.com, autodiscover.abc.com and autodiscover.xyz.com in the SAN certificate for proper autodiscover to work properly.
http://www.msexchange.org/articles-tutorials/exchange-server-2013/management-administration/managing-certificates-exchange-server-2013-part1.html
Thanks
Manikandan
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Hi,
The best way to understand the certificate requirements and to understand its planning better. Please refer the links mentioned on my previous post
Thanks
Manikandan
The best way to understand the certificate requirements and to understand its planning better. Please refer the links mentioned on my previous post
Thanks
Manikandan
In-case if you have three exchange servers from all of three domains. Then you can think of having a SAN certificate by for all the three locations where all the services like Outlook Anywhere, OAB, EWS and so forth. However out of all the three domains in which one the exchange is installed. Are you using Split brain DNS mechanisms or are you planning to have internal and external DNS separate.
Please confirm
Thanks
Manikandan