locked
Replacing Current SSL Certificate With Wildcard Certificate - Any Issues? RRS feed

  • Question

  • Greetings - I need to replace the SSL cert on our rms server. We have a wildcard cert that we've been using for other needs. Would there be any issues using the wildcard verses a specific cert for the server? Can I just import the wildcard cert on the box, go into IIS and edit the bindings, hit OK and call it good?Thanks!
    Thursday, March 7, 2013 9:56 PM

Answers

  • Hello.

    I have no seen issues with this at all, either for core AD RMS or Federated AD RMS Wilcard certs works fine.

    Make sure you get the cert installed and correctly configure in the IIS Bindings to avoid issues, easy way to test aftet that will be connecting to IIS web page of your AD RMS from the internal network http://adrmscluster/ and validate you don't get any "reds" in the IE but the IIS home page.

    Cheers.

    Cristian Mora

    http://synergyadvisors.biz

    @SYNERGYSEC

    Friday, March 8, 2013 10:16 PM

All replies

  • Hello.

    I have no seen issues with this at all, either for core AD RMS or Federated AD RMS Wilcard certs works fine.

    Make sure you get the cert installed and correctly configure in the IIS Bindings to avoid issues, easy way to test aftet that will be connecting to IIS web page of your AD RMS from the internal network http://adrmscluster/ and validate you don't get any "reds" in the IE but the IIS home page.

    Cheers.

    Cristian Mora

    http://synergyadvisors.biz

    @SYNERGYSEC

    Friday, March 8, 2013 10:16 PM
  • Thanks Cristian...

    Everything seemed to go fine(ha ha ha). I have added and switched the binding to the new cert. I then browsed to '_wmcs/Certification/certification.asmx' to check on the cert. I am asked to authenticate, then the page displays correctly using the new cert. :) We use this server to manage our wireless connection to the network. Now... none of the laptops are able to connect - authentication issues. I would appreciate any infomation as to what I need to change on the cert (secondary name etc) or might there be an issue with the wireless (Meraki) control not recognizing the new cert.

    Thanks!

    Wednesday, March 13, 2013 7:09 PM
  • Hi Robert -

    Is the new certificate trusted by the clients?

    Micah LaNasa (Synergy Advisors)

    http://synergyadvisors.biz

    @SYNERGYSEC

    Wednesday, March 13, 2013 11:53 PM