1. The name on the certificate must match the name of the site or server. 2. https://tsta-s2.tsta.org has a certificate installed which was issued by a CA of the organization itself. 3. Typing in the IP address will always result in a certificate error, as unless you have a certificate for the IP address, it will never match. 4. A certificate for tsta.org would be a very broad one. That would be open for problems. The best bet is to let the current certificate expire and get one for the FQDN, tsta-s2.tsta.org. John Tolmachoff MCSE CSSA Engineer/Consultant eServices For You www.eservicesforyou.com > -----Original Message----- > From: Dee [mailto:deea@xxxxxxxx] > Sent: Friday, October 17, 2003 10:18 AM > To: [ExchangeList] > Subject: [exchangelist] OWA Verisign Certificate > > http://www.MSExchange.org/ > > Our OWA runs fine right now, except we have to click on Yes to the > statement that the name on the certificate does not match the name of the > site. As our certificate is for "tsta-s2" and the OWA is at > "tsta-s2.tsta.org" -- tsta.org is set for renewal at November 2, 2003. > > I was thinking of obtaining a certificate for "tsta-s2.tsta.org" and > letting the "tsta-s2" certificate expire. I do not believe we need a > certificate for tsta.org, but how can I be sure? > > Our OWA link = https://63.118.88.5/exchange (you can see the Certificate > popup from there). > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp > Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > Leading Network Software Directory: http://www.serverfiles.com > No.1 ISA Server Resource Site: http://www.isaserver.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------