![]() ![]() ![]() local (all non-routable names) will need to be updated to contoso. ). Therefore, NetBIOS names will need to be removed from certificates as well as names with contoso. Exchange and SSL customers will need to make sure their certificates are modified to use external and internal FQDNs (i.e. The requirements have changed more recently and this subject has become an increasing concern (for me) over the past 6 or 9 months as the deadline approaches. Those names covered the bases with every possible connection scenario that might come up but exposed internal server names that could potentially cause security issues. In the past, internal names were added to SSL certificates for Exchange because that is what Microsoft’s guidance was to eliminate certificate warnings in Outlook–and public certificate authorities (CA) permitted them. NOTE: The following has been tested with Exchange 2010 and Exchange 2013, and may not work with Exchange 2007 or older. If Exchange 2007 is installed in your environment, my recommendation is to transition to Exchange 2010 or newer. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |