ISA 2006 single NIC with two SSL certs

From: Brett.Ondrey@xxxxxxxxx
Date: 18 Jan 2007 10:51:26 -0800

Is this possible... I have ISA 2006 in the DMZ with a single NIC. is
it possible to bind two SSL certificates to this machine. One for the
external(trusted cert) host name (owa.company.com) and then an
internal(CA cert) cert talking to exchange named (server.company.com)?

The extrnal hostname is not the same common name as the exchange server.

.

Prev by Date: Re: ISA 2004 and PIX 501 - Pix for DSL PPPOE only and no NAT...
Next by Date: Re: Direction paradigm? n00b question
Previous by thread: ISA 2004 and PIX 501 - Pix for DSL PPPOE only and no NAT...
Next by thread: Re: ISA 2006 single NIC with two SSL certs
Index(es):
- Date
- Thread

Relevant Pages

Re: BIND CERTs and TCP/IP Services (was: Re: Licenses and Support for OpenVMS VAX V5.5.2)
... Folks with contracts will want to contact the support center with these sorts of questions. ... I'll ping the TCP/IP team with a question on the CERT status of BIND; details of which CERTare potentially involved here would be useful in the discussion. ...
(comp.os.vms)
Re: Wachovias web page security
... >> of the cert if you didn't try to impersonate someone else with it. ... SSL certificates are just a waste of time. ... you're connected to the web site you think you are. ...
(misc.consumers)
Re: Exchange 2007 and Outlook Anywhere
... Exchange 2007 and SSL Certificates ... single domain SSL cert work for Outlook anywhere or do I have to have a SAN ... HTTPS to HTTP ...
(microsoft.public.exchange.admin)
Re: SSl on FE Exchange
... Recommend buying a cert from a commercial CA for production FE boxes - ... there are many low-cost CAs out there trusted by Windows/IE. ... You can generate a cert req from your DMZ FE box and transfer ... cert using any media or method to the server in DMZ. ...
(microsoft.public.exchange.design)
RE: [Full-Disclosure] VerySign Class 1 Authority - bogus SSL certificate?
... > I've been getting SSL certificates from various websites recently that are ... no big deal in this type of cert these certs can be created by anyone, except that verisign cert would not have been accepted by the browser, that is why we have trusted Certifacate authorities which do the validation of the certs. ... please revoke the cert and make a new one or if u know the site owner please alert the site owner as well as versisign ...
(Full-Disclosure)