Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 6 subscribers
  • Views 7933 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wildcard Certificate needed?

tomcek

Hello,

I wan´t to protect a Exchange 2013 through the WAF with a public signed certificate from RapidSSL.

 

Is there a need to buy a wildcard certificate? I ask because I´am not sure if I need autodiscover or only OWA/ActiveSync? The endpoints are iPhones, iPads and maybe Windows laptops with Outlook 2013.

For iPhones and iPads I would say I only need ActiveSync and that´s why I only need a single domain certificate like mail.domain.com. But if I need autodiscover (??) I need a second subdomain like autodiscover.domain.com - is it correct?

 

Thanks, Tom

 

edit: sorry wrong discussion forum, please move to general discussion



This thread was automatically locked due to age.
  • 0

    You can do a wildcard certificate, or if you have a good handle on all of the subdomains/hostnames you need, you can use the Subject Alternative Name (SAN) function of the certificates.  Wild cards certs have certainly gotten more affordable recently, though.

  • +1

    Hi, there is a greate write up here, https://blogs.technet.microsoft.com/exchange/2014/03/19/certificate-planning-in-exchange-2013/ that might help.

    What ever certificate and subdomain you set up on exchange will also have to be set up on the UTM.

    I would suggest a wildcard certificate, you pick them up for<$60 a year now. GoGetSSL on SSLS both have them cheap but you can find other places as well.

    Also if you us a wildcard, you can use it on other subdomains on the same domain as well.

    Regards,
    Bohdan

  • 0

    To protect Microsoft Exchange server 2013, UCC ( Unified Communications Certificate ) SSL is the best inplace of wildcard ssl certificate. You can also secure sub domains with it because this type of ssl certificate provides some multiple domains by default at free of cost. But this multiple domain number remains different like 1, 2,3 as per trusted ssl providers like Certs4Less, ClickSSL etc. UCC SSL takes sub-domain as different domain.

    For example,

    If you take UCC SSL for domain.com and the ssl provider (from which you have taken ssl) gives three extra domain at free of cost then you can secure :

    1. domain.com
    2. autodiscover.domain.com
    3. abc.net
    4. blog.xyz.net
  • 0

    If your website is located on Microsoft Office Communication Server or Microsoft Exchange Server, Microsoft is recommending to protect your website with UCC (Unified Communication Certificate) SSL Certificate only.

    UCC SSL Certificate will allow you to protect up to 100 multiple domains along with your base domain.

    Comodo, Thawte, GeoTrust and Symantec are genuine Certificate Authorities which are suggested by Microsoft to secure Exchange server. - https://support.microsoft.com/en-in/kb/929395

    It is not a bad idea to use a Wildcard SSL Certificate, as your demand is to secure your sub-domains. And the wildcard SSL certificate can protect your unlimited number of sub-domains.

    If you are looking for affordable and cheap Wildcard & UCC SSL Certificate, then Comodo is the best option.

  • 0 in reply to Bohdan.S

    Thank you very much and all the others. This was very helpful.

     

    Marry Christmas,

    Tom

Unfiltered HTML