locked
Exchange 2010 SAN and Wildcard cert RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,
    Have just installed 2 hub/cas servers and 2 mbx servers.

    Hub/cas has NLB (nlb.customer.local) and CASArray mapi.customer.local

    The customer uses a wildcard cert, *.customer.com for several other services. But I have always used a SAN certificate for Exchange 2007/2010 and I have heard that that is still "best-practice".

    1. Can we request a SAN certificate even tho the customer have a wilcard for its domain?

    2. We have requested mail.customer.com, autodiscover.customer.com, nlb.customer.local, cas1.customer.local, cas2.customer.local, legacy.customer.local. (is it correct to use nlb or should we use the mapi name?)

     

     

    ftornell | Personal Blog: http://www.logicspot.NET
    Tuesday, May 11, 2010 11:55 AM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    - AFAIK godaddy lets you do both, didn't try with other providers creating both.

    - why you are using nlb.customer.local and mapi.custmer.local why not using only one!

    Regards, Mahmoud Magdy Watch Arabic Level 300 Videos about Exchange 2010 here: http://vimeo.com/user3271816 Read pretty advanced Exchange stuff I and other MVPs post here: http://www.enowconsulting.com/ese/blog.asp Or follow my blog: http://busbar.blogspot.com or our corp blog: http://ingazat.wordpress.com and if you Liked my post please mark it as helpful and accept it as an asnwer
    Tuesday, May 11, 2010 12:00 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    Yup, you will use map.domain.local
    Regards, Mahmoud Magdy Watch Arabic Level 300 Videos about Exchange 2010 here: http://vimeo.com/user3271816 Read pretty advanced Exchange stuff I and other MVPs post here: http://www.enowconsulting.com/ese/blog.asp Or follow my blog: http://busbar.blogspot.com or our corp blog: http://ingazat.wordpress.com and if you Liked my post please mark it as helpful and accept it as an asnwer
    Tuesday, May 11, 2010 12:22 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    - AFAIK godaddy lets you do both, didn't try with other providers creating both.

    - why you are using nlb.customer.local and mapi.custmer.local why not using only one!

    Regards, Mahmoud Magdy Watch Arabic Level 300 Videos about Exchange 2010 here: http://vimeo.com/user3271816 Read pretty advanced Exchange stuff I and other MVPs post here: http://www.enowconsulting.com/ese/blog.asp Or follow my blog: http://busbar.blogspot.com or our corp blog: http://ingazat.wordpress.com and if you Liked my post please mark it as helpful and accept it as an asnwer
    Tuesday, May 11, 2010 12:00 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi again,

    Well nlb is just the name of the "cluster" itself. for the Exchange CASArray we choosed mapi.customer.local and it is problebly that name we should put in the certificate right?

    Edit: We had mapi.customer.local in the certrequest! :)

    ftornell | Personal Blog: http://www.logicspot.NET
    • Edited by [zid] Tuesday, May 11, 2010 12:25 PM
    Tuesday, May 11, 2010 12:11 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    Yup, you will use map.domain.local
    Regards, Mahmoud Magdy Watch Arabic Level 300 Videos about Exchange 2010 here: http://vimeo.com/user3271816 Read pretty advanced Exchange stuff I and other MVPs post here: http://www.enowconsulting.com/ese/blog.asp Or follow my blog: http://busbar.blogspot.com or our corp blog: http://ingazat.wordpress.com and if you Liked my post please mark it as helpful and accept it as an asnwer
    Tuesday, May 11, 2010 12:22 PM