Re: Can I use a 3rd-party Certificate for RWW, OWA, etc?
- From: v-chayan@xxxxxxxxxxxxxxxxxxxx ("Charles Yang [MSFT]")
- Date: Thu, 06 Oct 2005 00:35:17 GMT
HI Bryan,
Thanks for updates.
Your understanding about the issue is correctly, as I am not sure if you
have not installed ISA on your SBS domain, so I offer some information
about ISA server. You can ignore it.
The certificate did not relate to hardware firewall, so you did not need to
worry about hardware firewall setting. You only need to use CEICW to
replace the certificate for what you need.
Thanks again for your efforts. I am glad to hear that you got the
information you want. Please feel free to post here, if you have further
concerns.
Best regards,
Charles Yang (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: "Bryan L" <blinton.nospam@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
| References: <OxcZZ2RyFHA.1032@xxxxxxxxxxxxxxxxxxxx>
<EwCfgUXyFHA.768@xxxxxxxxxxxxxxxxxxxxx>
| Subject: Re: Can I use a 3rd-party Certificate for RWW, OWA, etc?
| Date: Wed, 5 Oct 2005 10:36:26 -0500
| Lines: 53
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.2180
| X-RFC2646: Format=Flowed; Original
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
| Message-ID: <eAuaNKcyFHA.2848@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: connellinsurance.com 66.76.216.32
| Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP15.phx.gbl
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:159010
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Charles,
|
| Thanks for the reply! Based on what you have told me, I think my plan
will
| work. Let me make sure I completely understand your answer.
|
| You said:
| > ...but you can only use one certificate for multiple websites, if you
| > want to use ISA publish the website to internet.
|
| What do you mean by this? I don't understand your reference to ISA;
| I'm not running an ISA server.
|
| Also, when you say, "publish" the website to the internet", is that the
same
| as "make the website accessible from the internet"? I have several
public
| IP addresses. One is mapped to the SBS with 1:1 NAT, and one is mapped
to
| the IIS server with 1:1 NAT. This is configured in my hardware firewall,
so
| I can reach both servers via the internet by using their respective
public
| IP addresses.
|
| > The sub-directories under the same IIS WebSite will use the same
| > certificate. For example, OWA and RWW will use the same certificate and
| > there's no way to configure them to use different certificates since
| > they're both under 'Default Website'.
| >
| > If you use CEICW to import a new certificate, it will replace the
previous
| > one and apply it to all the default websites. You do not need to rerun
| > "Configure Mobile Device" for the OMA and active sync, the SBS will
| > configure it using new certificate automatically.
|
| I understand this, and this is exactly what I want.
|
| > However, please note that if you are using ISA to web publishing out
your
| > websites, only 1 certificate can be bound to 1 ISA Incoming Listener,
| > that's to say, if you only have 1 external interface which the Incoming
| > Listener is listening on, you only can use 1 certificate for all of your
| > web published sites.
|
| I don't understand what you mean here, again, when you talk about ISA.
My
| hardware firewall separates my internal network from the public internet.
| 1:1 NAT is configured for both of the servers (SBS and IIS) that I want
to
| access via the internet, and on which I want to use the wildcard
| certificate. In other words, I plan to use the certificate on the
Default
| Web Site on the SBS so that all the built-in sites on the SBS are using
the
| new wildcard certificate. Both servers have unique public IP addresses.
|
| Do I understand you correctly that I *should* be able to do this? Let me
| know if I have omitted any important information.
|
| Thanks again Charles!
|
| Bryan
|
|
|
.
- References:
- RE: Can I use a 3rd-party Certificate for RWW, OWA, etc?
- From: "Charles Yang [MSFT]"
- RE: Can I use a 3rd-party Certificate for RWW, OWA, etc?
- Prev by Date: RE: Unusual Backup Error...Have you seen this?
- Next by Date: Re: Error Code: Internet_152
- Previous by thread: RE: Can I use a 3rd-party Certificate for RWW, OWA, etc?
- Next by thread: RE: 'SBS_Database_Cleanup' Failed
- Index(es):
Relevant Pages
|
