Hi folks
Sorry if this sounds trivial, but this is the first time I've used the Web Application Firewall for a production system using proper certificates, and I want to make sure I'm not about to make an expensive mistake!
I've followed the Sophos document on how to configure the UTM 9.2 WAF for Exchange connectivity, and I've got it to work using private certificates. I now want to replace my home-brew certificates with one(s) from one of the major certificate authorities. My question is - what do I need?
I've got three virtual servers configured:
autodiscover..com
outlook..com
webservices..com
1. Do I just need certificates to cover the above external names, or do I need to worry about the internal DNS names for the exchange server as well?
2. Three separate certificates (which is what I used while testing) or one SAN certificate? Does it matter?
3. If a SAN certificate, does it matter which name goes in the subject field? (as you can guess, I'm not too knowledgeable about SAN certificates...)
Any other problems or "gotcha"s that I should be aware of when buying certificates for use with Sophos UTM?
Thanks for any guidance anyone can give...
Ifor
This thread was automatically locked due to age.
