Just make you set the avail and autodiscovery stuff (AutoDiscoverServiceInternalUri), etc.. via powershell to point to the FQDN of the NLB.
-----Original Message----- From: Matt Bullock [mailto:[EMAIL PROTECTED] Sent: Thursday, January 24, 2008 3:44 PM To: MS-Exchange Admin Issues Subject: RE: NLB CAS SSL Certs So I can remove the .local names, and use - cas1.domain.com cas2.domain.com mail.domain.com (NLB address) autodiscover.domain.com (NLB address) Thanks Neil and Andy -----Original Message----- From: Andy David [mailto:[EMAIL PROTECTED] Sent: Thursday, January 24, 2008 4:21 AM To: MS-Exchange Admin Issues Subject: RE: NLB CAS SSL Certs If you point the clients to the NLB FQDN and set the autodiscovery stuff etc to the NLB address, then all you really need is that and the autodiscovery FQDN as well(dont forget autodiscovery!) No need to add the .local and actual host names of the servers unless you really want to. ________________________________________ From: Matt Bullock [EMAIL PROTECTED] Sent: Thursday, January 24, 2008 12:24 AM To: MS-Exchange Admin Issues Subject: NLB CAS SSL Certs I am trying to figure out the proper SSL cert to purchase. I have two CAS/HUB servers using NLB for redundancy and load balancing, and I wanted to make sure a single SAN cert will do the trick. Would the following names be all I need to include in the cert? Cas1.domain.com Cas2.domain.com Cas1.domain.local Cas2.domain.local Mail.domain.com (NLB address) After installing on the first server, I'll export and install on the second. Thanks, Matt ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~