Re: SSL Certificates from GoDaddy - what to backup?

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

if the SSL cert is created using the same url as you create for your A
record to point mail for your mx record its the same theory

url for A record and SSL
remote.domainname.com

Then its just remote.domainname.com/remote for RWW or /exchange for email

Same concept

--
Cris Hanna [SBS-MVP]
-------------------------------------------------
Microsoft MVPs
Independent Experts (MVPs do not work for MS)
Real World Answers
---------------------------------------------------------
Please do not contact me directly regarding issues

"SBS W2K3 Admin" <noreply@xxxxxxxxxxxxxx> wrote in message
news:OwMmxo%23lHHA.4840@xxxxxxxxxxxxxxxxxxxxxxx
Well you could have save yourself the money and hassles of backing up the
certificate and reinstalling. What I did for my SSL was to let SBS create
me one for the registered FQDN alias Knowing that the certifcate name much
match the fqdn I have registerested with my ISP providor. Most companies
will use companyname.com for their external website so using this was not
an option for my alias FQDN. So what I did was create gomycompanyname.com
which is great because now I can use this for all my SSL access such as
OWA, Remote and my Citrix server also because the alias is tied to my
external IP. So instead of having to type https://xxx.xxx.xx.xx I can
access all ssl sites with the single name.

When I type

http://gomycompanyname.com
takes me to my Citrix Web Interface which resides on a different internal
server and although it is the SBS server external IP I use NAT and ISA to
redirect to my Citrix server.

http://gomycompanyname.com/exchange




"Cris Hanna [SBS-MVP]" <crisnospamhanna@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
wrote in message news:uvZLOh%23lHHA.4840@xxxxxxxxxxxxxxxxxxxxxxx
I've not looked at the various options for what file formats are
"recognized" when running the CEICW wizard, but if you have the file...it
should be simply a matter of running the wizard...when you get to the
part where its asking about the cert...just point to the file.

So for those folks that are outside the LAN...it takes 30 seconds to
install the self signed cert and its a 1 time deal and all done.

Spending the extra money was better?

--
Cris Hanna [SBS-MVP]
-------------------------------------------------
Microsoft MVPs
Independent Experts (MVPs do not work for MS)
Real World Answers
---------------------------------------------------------
Please do not contact me directly regarding issues

"Jim" <jim@xxxxxxxxxx> wrote in message
news:27gm4315v4btm5v8ujjd6osr6828pp53ee@xxxxxxxxxx
Hi all,

Everyone in this group will, by now, be familar with the SBS 2003 fun
I've had this week! Anyway, prior to doing the swing thing I purchased
an SSL certificate from RapidSSL to allow me to use OWA without
certificate warnings.

When I did the reinstallation I backed up my certificate, and I also
exported the certificate and private key to a .pfx file.

On the new system I couldn't install it. I got caught in the trap of
CCIEW saying that I haven't run the wizard in IIS, or I got messages
about the certificate having already been installed elsewhere, etc.

Luckily I was within my RapidSSL 7-day timeframe so I've been able to
get a refund.

For various reasons I've now bought (and successfully installed) a new
certificate from GoDaddy. They supply their certificates as a .p7b
file (intermediate) and a .crt file.

Perish the thought, but if I had to do a clean install again - what
should I backup? Is it safe to backup just those two files supplied by
GoDaddy? What about the c:\certreq.txt file? I'm sure I'd get trapped
by the "You've not run the wizard" thing again.

I don't see much help in google, so am I asking for the
impossible....or just something very obvious that I'm missing!

Many thanks,




Jim






.

Relevant Pages