The certificates doesn't have to be from the same provider, as long as it is trusted.
Ideally all CAS servers should be listed in the certificate, so you would need to reissue the certificate. Fortunately as you are changing providers that can be done with no downtime, as the certificate can be requested and installed then enabled. If you are using the same provider then you may have downtime because many providers will not allow two certificates to be active covering the same names, so the old one has to be revoked first. Just unfortunate you have gone from one reasonably priced certificate provider to probably the most expensive provider. You will find that the certificate change will be very expensive, not only because of the provider change but the increase in the number of names required. There is no reason why Verisign's very expensive certificates need to be used with Exchange. Simon. From: phil levine [mailto:[email protected]] Sent: 20 January 2011 14:54 To: MS-Exchange Admin Issues Subject: SAN Certs We are adding two more CAS/HUB servers to our environment and their names are not in our current SAN Cert. My question is twofold; first, can we add a new SAN Cert to the new servers with the old servers names on them and second, does the new Cert need to be from the same company. Currently our Cert is from Digi and in the interim our company made a deal with Verisign for Certs and we need to use them now. Thanks Phil --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected]<mailto:[email protected]> with the body: unsubscribe exchangelist --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe exchangelist
