RE: SSL recomendations

[Louis, Joe]

I just bought a cert from them and it comes standard with 5 SANs. I may try 
them when it comes time for my exchange cert to expire. I used Verisign because 
at the time Thawte didn't have SANs and Verisign was one of the only that did 
and worked with Exchange/mobile (or so I was told).

A lot has changed since then and I have to say getting this cert was pretty 
painless.

From: Martin Blackstone [mailto:mblackst...@gmail.com]
Sent: Monday, August 23, 2010 9:16 AM
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations

We use them for our SAN certs. Work great and since I don't have to give my 
money to VeriSign, it makes me feel good inside.

From: Ellis, John P. [mailto:johnel...@wirral.gov.uk]
Sent: Monday, August 23, 2010 6:14 AM
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations

They get my vote.


From: Peter Johnson [mailto:peter.john...@peterstow.com]
Sent: 23 August 2010 07:32
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations
Hi Steve

I can certainly second the endorsement of Digicert. Not the cheapest but they 
are endorsed by MS as a UC cert vendor and I've always found there support to 
be top notch!

Regards
[cid:image001.jpg@01CB42D6.30ABA160]

Peter Johnson
I.T Architect
United Kingdom: +44 1285 658542
South Africa: +27 11 252 1100
Swaziland: +268 442 7000
Fax:+27 11 974 7130
Mobile: +2783 306 0019
peter.john...@peterstow.com<mailto:peter.john...@peterstow.com>
www.peterstow.com<http://www.peterstow.com>


This email message (including attachments) contains information which may be 
confidential and/or legally privileged. Unless you are the intended recipient, 
you may not use, copy or disclose to anyone the message or any information 
contained in the message or from any attachments that were sent with this 
email, and If you have received this email message in error, please advise the 
sender by email, and delete the message. Unauthorised disclosure and/or use of 
information contained in this email may result in civil and criminal liability. 
Everything in this e-mail and attachments relating to the official business of 
Peterstow Aquapower is proprietary to the company.

Caution should be observed in placing any reliance upon any information 
contained in this e-mail, which is not intended to be a representation or 
inducement to make any decision in relation to Peterstow Aquapower. Any 
decision taken based on the information provided in this e-mail, should only be 
made after consultation with appropriate legal, regulatory, tax, technical, 
business, investment, financial, and accounting advisors. Neither the sender of 
the e-mail, nor Peterstow Aquapower shall be liable to any party for any 
direct, indirect or consequential damages, including, without limitation, loss 
of profit, interruption of business or loss of information, data or software or 
otherwise.

The e-mail address of the sender may not be used, copied, sold, disclosed or 
incorporated into any database or mailing list for spamming and/or other 
marketing purposes without the prior consent of Peterstow Aquapower.
No warranties are created or implied that an employee of Peterstow Aquapower 
and/or a contractor of Peterstow Aquapower is authorized to create and send 
this e-mail.
 [cid:image002.jpg@01CB42D6.30ABA160]
From: Steve Hart [mailto:sh...@wrightbg.com]
Sent: 20 August 2010 19:53
To: MS-Exchange Admin Issues
Subject: SSL recomendations

Lots of questions today!

I'm getting a cert for the new 2007 server. We currently have 2 servers using 
different domain names that we will be consolidating into 1. We will be 
consolidating domain names as well, but sometimes old habits (and shortcuts) 
die hard. Our real world server name convention is mail.domain.com

I'm thinking that I need to specify five FQDNs in the cert request: 
mail.domain1.com, autodiscover.domain1.com, mail.domain2.com, 
autodiscover.domain2.com, realservername.domain1.com .  Is that correct?

Secondly, I've been asked to get the cert from Godaddy.  Does anyone know 
offhand if their StandardSSL for Multiple Domains is the right cert to get?

Thanks in advance!

Steve



**

This email and any files transmitted with it are confidential and

intended solely for the use of the individual or entity to whom they

are addressed. If you have received this email in error please notify

the system manager.

This footnote also confirms that this email message has been swept by

MIMEsweeper for the presence of computer viruses.

www.clearswift.com<http://www.clearswift.com>

**
<><>

RE: SSL recomendations

[Martin Blackstone]

We use them for our SAN certs. Work great and since I don't have to give my
money to VeriSign, it makes me feel good inside.

 

From: Ellis, John P. [mailto:johnel...@wirral.gov.uk] 
Sent: Monday, August 23, 2010 6:14 AM
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations

 

They get my vote.

 

  _  

From: Peter Johnson [mailto:peter.john...@peterstow.com] 
Sent: 23 August 2010 07:32
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations

Hi Steve

 

I can certainly second the endorsement of Digicert. Not the cheapest but
they are endorsed by MS as a UC cert vendor and I've always found there
support to be top notch!

 

Regards 


Description: C:\Users\PeterTJ\AppData\Roaming\Microsoft\Signatures\peterstow
logo2.jpg

Peter Johnson
I.T Architect
United Kingdom: +44 1285 658542
South Africa: +27 11 252 1100
Swaziland: +268 442 7000
Fax:+27 11 974 7130
Mobile: +2783 306 0019
peter.john...@peterstow.com
www.peterstow.com

 

This email message (including attachments) contains information which may be
confidential and/or legally privileged. Unless you are the intended
recipient, you may not use, copy or disclose to anyone the message or any
information contained in the message or from any attachments that were sent
with this email, and If you have received this email message in error,
please advise the sender by email, and delete the message. Unauthorised
disclosure and/or use of information contained in this email may result in
civil and criminal liability. Everything in this e-mail and attachments
relating to the official business of Peterstow Aquapower is proprietary to
the company. 

Caution should be observed in placing any reliance upon any information
contained in this e-mail, which is not intended to be a representation or
inducement to make any decision in relation to Peterstow Aquapower. Any
decision taken based on the information provided in this e-mail, should only
be made after consultation with appropriate legal, regulatory, tax,
technical, business, investment, financial, and accounting advisors. Neither
the sender of the e-mail, nor Peterstow Aquapower shall be liable to any
party for any direct, indirect or consequential damages, including, without
limitation, loss of profit, interruption of business or loss of information,
data or software or otherwise.

The e-mail address of the sender may not be used, copied, sold, disclosed or
incorporated into any database or mailing list for spamming and/or other
marketing purposes without the prior consent of Peterstow Aquapower. 

No warranties are created or implied that an employee of Peterstow Aquapower
and/or a contractor of Peterstow Aquapower is authorized to create and send
this e-mail. 

 Description:
C:\Users\PeterTJ\AppData\Roaming\Microsoft\Signatures\environment2.jpg

From: Steve Hart [mailto:sh...@wrightbg.com] 
Sent: 20 August 2010 19:53
To: MS-Exchange Admin Issues
Subject: SSL recomendations

 

Lots of questions today!

 

I'm getting a cert for the new 2007 server. We currently have 2 servers
using different domain names that we will be consolidating into 1. We will
be consolidating domain names as well, but sometimes old habits (and
shortcuts) die hard. Our real world server name convention is
mail.domain.com

 

I'm thinking that I need to specify five FQDNs in the cert request:
mail.domain1.com, autodiscover.domain1.com, mail.domain2.com,
autodiscover.domain2.com, realservername.domain1.com .  Is that correct?

 

Secondly, I've been asked to get the cert from Godaddy.  Does anyone know
offhand if their StandardSSL for Multiple Domains is the right cert to get?

 

Thanks in advance!

 

Steve

 

 

** 

This email and any files transmitted with it are confidential and 

intended solely for the use of the individual or entity to whom they 

are addressed. If you have received this email in error please notify 

the system manager. 

This footnote also confirms that this email message has been swept by 

MIMEsweeper for the presence of computer viruses. 

www.clearswift.com 

** 

<><>

RE: SSL recomendations

[Ellis, John P.]

They get my vote.



From: Peter Johnson [mailto:peter.john...@peterstow.com] 
Sent: 23 August 2010 07:32
To: MS-Exchange Admin Issues
Subject: RE: SSL recomendations



Hi Steve

 

I can certainly second the endorsement of Digicert. Not the cheapest but
they are endorsed by MS as a UC cert vendor and I've always found there
support to be top notch!

 

Regards 

 

Peter Johnson
I.T Architect
United Kingdom: +44 1285 658542
South Africa: +27 11 252 1100
Swaziland: +268 442 7000
Fax:+27 11 974 7130
Mobile: +2783 306 0019
peter.john...@peterstow.com
www.peterstow.com

 

This email message (including attachments) contains information which
may be confidential and/or legally privileged. Unless you are the
intended recipient, you may not use, copy or disclose to anyone the
message or any information contained in the message or from any
attachments that were sent with this email, and If you have received
this email message in error, please advise the sender by email, and
delete the message. Unauthorised disclosure and/or use of information
contained in this email may result in civil and criminal liability.
Everything in this e-mail and attachments relating to the official
business of Peterstow Aquapower is proprietary to the company. 

Caution should be observed in placing any reliance upon any information
contained in this e-mail, which is not intended to be a representation
or inducement to make any decision in relation to Peterstow Aquapower.
Any decision taken based on the information provided in this e-mail,
should only be made after consultation with appropriate legal,
regulatory, tax, technical, business, investment, financial, and
accounting advisors. Neither the sender of the e-mail, nor Peterstow
Aquapower shall be liable to any party for any direct, indirect or
consequential damages, including, without limitation, loss of profit,
interruption of business or loss of information, data or software or
otherwise.

The e-mail address of the sender may not be used, copied, sold,
disclosed or incorporated into any database or mailing list for spamming
and/or other marketing purposes without the prior consent of Peterstow
Aquapower. 

No warranties are created or implied that an employee of Peterstow
Aquapower and/or a contractor of Peterstow Aquapower is authorized to
create and send this e-mail. 

  

From: Steve Hart [mailto:sh...@wrightbg.com] 
Sent: 20 August 2010 19:53
To: MS-Exchange Admin Issues
Subject: SSL recomendations

 

Lots of questions today!

 

I'm getting a cert for the new 2007 server. We currently have 2 servers
using different domain names that we will be consolidating into 1. We
will be consolidating domain names as well, but sometimes old habits
(and shortcuts) die hard. Our real world server name convention is
mail.domain.com

 

I'm thinking that I need to specify five FQDNs in the cert request:
mail.domain1.com, autodiscover.domain1.com, mail.domain2.com,
autodiscover.domain2.com, realservername.domain1.com .  Is that correct?

 

Secondly, I've been asked to get the cert from Godaddy.  Does anyone
know offhand if their StandardSSL for Multiple Domains is the right cert
to get?

 

Thanks in advance!

 

Steve

 

 


**
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.

www.clearswift.com
**


<><>

RE: SSL recomendations

[Peter Johnson]

Hi Steve

I can certainly second the endorsement of Digicert. Not the cheapest but they 
are endorsed by MS as a UC cert vendor and I've always found there support to 
be top notch!

Regards
[cid:image001.jpg@01CB429D.AE70AE30]

Peter Johnson
I.T Architect
United Kingdom: +44 1285 658542
South Africa: +27 11 252 1100
Swaziland: +268 442 7000
Fax:+27 11 974 7130
Mobile: +2783 306 0019
peter.john...@peterstow.com
www.peterstow.com


This email message (including attachments) contains information which may be 
confidential and/or legally privileged. Unless you are the intended recipient, 
you may not use, copy or disclose to anyone the message or any information 
contained in the message or from any attachments that were sent with this 
email, and If you have received this email message in error, please advise the 
sender by email, and delete the message. Unauthorised disclosure and/or use of 
information contained in this email may result in civil and criminal liability. 
Everything in this e-mail and attachments relating to the official business of 
Peterstow Aquapower is proprietary to the company.

Caution should be observed in placing any reliance upon any information 
contained in this e-mail, which is not intended to be a representation or 
inducement to make any decision in relation to Peterstow Aquapower. Any 
decision taken based on the information provided in this e-mail, should only be 
made after consultation with appropriate legal, regulatory, tax, technical, 
business, investment, financial, and accounting advisors. Neither the sender of 
the e-mail, nor Peterstow Aquapower shall be liable to any party for any 
direct, indirect or consequential damages, including, without limitation, loss 
of profit, interruption of business or loss of information, data or software or 
otherwise.

The e-mail address of the sender may not be used, copied, sold, disclosed or 
incorporated into any database or mailing list for spamming and/or other 
marketing purposes without the prior consent of Peterstow Aquapower.
No warranties are created or implied that an employee of Peterstow Aquapower 
and/or a contractor of Peterstow Aquapower is authorized to create and send 
this e-mail.
 [cid:image002.jpg@01CB429D.AE70AE30]
From: Steve Hart [mailto:sh...@wrightbg.com]
Sent: 20 August 2010 19:53
To: MS-Exchange Admin Issues
Subject: SSL recomendations

Lots of questions today!

I'm getting a cert for the new 2007 server. We currently have 2 servers using 
different domain names that we will be consolidating into 1. We will be 
consolidating domain names as well, but sometimes old habits (and shortcuts) 
die hard. Our real world server name convention is mail.domain.com

I'm thinking that I need to specify five FQDNs in the cert request: 
mail.domain1.com, autodiscover.domain1.com, mail.domain2.com, 
autodiscover.domain2.com, realservername.domain1.com .  Is that correct?

Secondly, I've been asked to get the cert from Godaddy.  Does anyone know 
offhand if their StandardSSL for Multiple Domains is the right cert to get?

Thanks in advance!

Steve


<><>

RE: SSL recomendations

[Paul Hutchings]

I haven't used them but I've heard nothing but good things about
DigiCert, pretty sure they'll be my choice when we go to 2010 as
everything I've read suggests with the SAN/UCC stuff it's not always
worth trying to save a few $$$.

 

From: Steve Hart [mailto:sh...@wrightbg.com] 
Sent: 20 August 2010 18:53
To: MS-Exchange Admin Issues
Subject: SSL recomendations

 

Lots of questions today!

 

I'm getting a cert for the new 2007 server. We currently have 2 servers
using different domain names that we will be consolidating into 1. We
will be consolidating domain names as well, but sometimes old habits
(and shortcuts) die hard. Our real world server name convention is
mail.domain.com

 

I'm thinking that I need to specify five FQDNs in the cert request:
mail.domain1.com, autodiscover.domain1.com, mail.domain2.com,
autodiscover.domain2.com, realservername.domain1.com .  Is that correct?

 

Secondly, I've been asked to get the cert from Godaddy.  Does anyone
know offhand if their StandardSSL for Multiple Domains is the right cert
to get?

 

Thanks in advance!

 

Steve

 

 


--
MIRA Ltd

Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
Registered in England and Wales No. 402570
VAT Registration  GB 114 5409 96

The contents of this e-mail are confidential and are solely for the use of the 
intended recipient.  If you receive this e-mail in error, please delete it and 
notify us either by e-mail, telephone or fax.  You should not copy, forward or 
otherwise disclose the content of the e-mail as this is prohibited.

Re: SSL recomendations

[Eric]

I use digicert and found their website very helpful in generating and
installing a new cert for Exchange 2007.

https://www.digicert.com/easy-csr/exchange2007.htm

On Fri, Aug 20, 2010 at 10:53 AM, Steve Hart  wrote:

>  Lots of questions today!
>
>
>
> I’m getting a cert for the new 2007 server. We currently have 2 servers
> using different domain names that we will be consolidating into 1. We will
> be consolidating domain names as well, but sometimes old habits (and
> shortcuts) die hard. Our real world server name convention is
> mail.domain.com
>
>
>
> I’m thinking that I need to specify five FQDNs in the cert request:
> mail.domain1.com, autodiscover.domain1.com, mail.domain2.com,
> autodiscover.domain2.com, realservername.domain1.com .  Is that correct?
>
>
>
> Secondly, I’ve been asked to get the cert from Godaddy.  Does anyone know
> offhand if their StandardSSL for Multiple Domains is the right cert to get?
>
>
>
> Thanks in advance!
>
>
>
> Steve
>
>
>
>
>