RE: OWA Verisign Certificate

• From: "John Tolmachoff \(Lists\)" <johnlist@xxxxxxxxxxxxxxxxxxx>
• To: "'[ExchangeList]'" <exchangelist@xxxxxxxxxxxxx>
• Date: Fri, 17 Oct 2003 21:00:28 -0700

1. The name on the certificate must match the name of the site or server.

2. https://tsta-s2.tsta.org has a certificate installed which was issued by
a CA of the organization itself.

3. Typing in the IP address will always result in a certificate error, as
unless you have a certificate for the IP address, it will never match.

4. A certificate for tsta.org would be a very broad one. That would be open
for problems.

The best bet is to let the current certificate expire and get one for the
FQDN, tsta-s2.tsta.org.

John Tolmachoff MCSE CSSA
Engineer/Consultant
eServices For You
www.eservicesforyou.com

> -----Original Message-----
> From: Dee [mailto:deea@xxxxxxxx]
> Sent: Friday, October 17, 2003 10:18 AM
> To: [ExchangeList]
> Subject: [exchangelist] OWA Verisign Certificate
> 
> http://www.MSExchange.org/
> 
> Our OWA runs fine right now, except we have to click on Yes to the
> statement that the name on the certificate does not match the name of the
> site. As our certificate is for "tsta-s2" and the OWA is at
> "tsta-s2.tsta.org" -- tsta.org is set for renewal at November 2, 2003.
> 
>       I was thinking of obtaining a certificate for "tsta-s2.tsta.org" and
> letting the "tsta-s2" certificate expire. I do not believe we need a
> certificate for tsta.org, but how can I be sure?
> 
>       Our OWA link = https://63.118.88.5/exchange (you can see the
Certificate
> popup from there).
> 
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
> Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
> Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 ISA Server Resource Site: http://www.isaserver.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------

Other related posts:

• » OWA Verisign Certificate
• » RE: OWA Verisign Certificate
• » RE: OWA Verisign Certificate

1. Home
2. exchangelist
3. Archive
4. 10-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---