Solved

How do you determine is an SSL certificate is still needed

Posted on 2016-10-16
8
61 Views
Last Modified: 2016-10-16
We have a renewal coming up from GoDaddy on owa.spcala.com SSL certificate.   We used to use that for accessing our internal Exchange server from the web.   We now use Office 365 for email.   Do we still need this site to have a certificate.
0
Comment
Question by:J.R. Sitman
  • 4
  • 4
8 Comments
 
LVL 16

Expert Comment

by:Ivan
ID: 41845706
Hi,

if you have migrated from Exchange to Office 365, and you have decommissioned/ removed exchange from your organization, then there should not be any reason for cert renewal.

I guess that on that certificate, you have more names then just owa.spcala.com? Usually owa and autodiscover are used for exchange. If you have some additional names, then maybe that certificated is used for some other services, like sharepoint, lync and such.
Check the names on it, and then determine where are they pointing to, via public DNS. That should tell you if they are in use.

Regards,
Ivan.
1
 

Author Comment

by:J.R. Sitman
ID: 41845724
Thanks.   The name pointing to exchange.spcala.com we don't need.   What would the autodiscover.spcala.com possibly be used for?   spcala.com is our website.
0
 
LVL 16

Accepted Solution

by:
Ivan earned 500 total points
ID: 41845828
Hi,

autodiscover.spcala.com is used for automatic configuration of Outlook and email on mobile devices.
Since you are using Office 365 now, then that record is most likely pointing to Office 365, and you don't need it anymore.. but do check where it is pointing :)

Regards,
Ivan.
1
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:J.R. Sitman
ID: 41845842
Can you tell me how to test where it is pointing?
0
 
LVL 16

Expert Comment

by:Ivan
ID: 41845900
You can use ping autodiscover.spcala.com

It says that it is pointing to autodiscover-emeacenter4.outlook.com. So this is Microsoft, not your local server.
0
 

Author Comment

by:J.R. Sitman
ID: 41845902
ok.  That means we need it.

Thanks
0
 
LVL 16

Assisted Solution

by:Ivan
Ivan earned 500 total points
ID: 41845940
Hi,

no, it means that you don't need it.
If that record would point to your server, then you would need it, since when client connects, the certificate would be presented.
In your situation, record is pointing to Office 365, so you don't need it. You need the DNS record, but not the certificate it self.
0
 

Author Comment

by:J.R. Sitman
ID: 41845975
ah, thanks
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
New firewall implementation guidance 12 60
exchange powershell question 5 34
What Exchange User Permissions Does One have? 7 35
Existing Office 365 implement on-premise AD 4 36
Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question