A1 - Trying to select under "Incoming Web Requests" tab in the listener list (under the radio buttons). I am trying to edit the existing listener and then the select box labeled "Use a server certificate to authenticate the web clients". FWIW, I also tried adding a new one and changing it to be the same listener for all IP addresses, but neither of those places showed it as an option either. A2 - I created the certificate on the new web server. I then exported it to file, copied the file to the ISA Server and imported it into the Personal certificates. (It does show up there.) > ..probably did something wrong. > Q1 - where are you trying to select the certificate? > Q2 - where (exactly) did you install said certificate? > > -----Original Message----- > From: Bill Mayo [mailto:bemayo@xxxxxxxxxxxxx] > Sent: Thursday, June 30, 2005 8:33 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: Wildcard Certificate question > > http://www.ISAserver.org > > I tried doing this, but the ISA Server does not show the wildcard > certificate as a choice. Does this not work in ISA Server 2000, or am I > doing something wrong? > > Bill Mayo > Pitt County MIS > > > Essentially, you're correct, with one caveat: > > - you cannot use the wildcard cert on the web server itself - ISA > > doesn't recognize them. > > > > ------------------------------------------------------- > > Jim Harrison > > MCP(NT4, W2K), A+, Network+, PCG > > http://isaserver.org/Jim_Harrison/ > > http://isatools.org > > Read the help / books / articles! > > ------------------------------------------------------- > > > > -----Original Message----- > > From: Bill Mayo [mailto:bemayo@xxxxxxxxxxxxx] > > Sent: Thursday, June 30, 2005 07:48 > > To: [ISAserver.org Discussion List] > > Subject: [isalist] Wildcard Certificate question > > > > http://www.ISAserver.org > > > > Currently, I have our OWA site published through ISA Server. It was > set > > up using Dr. Shinder's excellent "Publishing Exchange 2003 OWA with > ISA > > Server 2000" document. I now have a need to add a second secured > site, > > and ran into a problem because the listener can only have one > > certificate. > > > > I did some research and found the "Publishing Multiple Web Sites using > a > > Wildcard Certificate in ISA Server 2004". I have ISA Server 2000, but > > it > > sounds like this should work with that version as well. > > > > The article seems to be written from the perspective of a new > > installation. Having setup 1 secured site (as indicated above), I am > > wondering if all the steps are required. Basically, is it accurate to > > say > > that if I create a wildcard certificate on a different server and set > my > > web listener to use it, there is no reason to disturb the current OWA > > settings? I am thinking that I can perform that particular process > with > > the new server, change the certificate on the listener, and then just > > add > > the new site. Is this accurate? I am a little wary about adding, > > removing, and re-adding certificates to that particular server, > > especially > > with the detailed instructions being for ISA 2004. > > > > Thanks in advance (particular to Dr. Shinder for his excellent > > articles), > > Bill Mayo > > Pitt County MIS > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > jim@xxxxxxxxxxxx > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > All mail to and from this domain is GFI-scanned.