I don't disagree with the answer below, but if you do go for a commercial cert (for outside OWA for example) consider a wildcard cert and use it everywhere. Much more cost effective. 200 bucks or so from GoDaddy.
> -----Original Message----- > From: Neil Hobson [mailto:[EMAIL PROTECTED] > Sent: Tuesday, October 28, 2008 11:45 AM > To: MS-Exchange Admin Issues > Subject: RE: Certificates > > Correct, the self-signed certificate installed on the Hub Transport > server > will expire after 12 months and therefore requires renewal. My opinion > here > is that, generally, the self-signed certificate is ideal for Hub-Hub, > Hub-Edge and Edge-Hub communications so in your case I'd leave the > self-signed certificate on the Hub Transport server and renew as > required. > > -----Original Message----- > From: McCready, Rob [mailto:[EMAIL PROTECTED] > Sent: 28 October 2008 12:12 > To: MS-Exchange Admin Issues > Subject: Certificates > > By default, a certificate is installed on the first Hub Transport > Server in > an Exchange 2007 environment, which last for 1 year, correct? > > My question is, if I want to buy a certificate from a Certificate > Authority > (to use as verification of encryption between us and another company), > do I > place it on the Hub Transport server to replace the "default" > certificate, > or do I need more than one certificate? One to replace the Hub > Certificate > which will expire after one year, and one to be installed on the Edge > Transport Server(s) in the DMZ? > > Thanks all, > > Rob > > ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ > ~ http://www.sunbeltsoftware.com/Ninja ~ > > > ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ > ~ http://www.sunbeltsoftware.com/Ninja ~ ~ Ninja Email Security with Cloudmark Spam Engine Gets Image Spam ~ ~ http://www.sunbeltsoftware.com/Ninja ~
