From August 19th 2020, SECTIGO issues SSL certificates with a maximum lifetime of 398 days (13 months) as specified by CA/Browser consortium. SSL certificates with a longer lifetime must be re-issued annually (free of charge). You'll receive reminders via e-mail. SSL certificates issued before August 19th 2020 remain valid until their planned expiry date. Code Signing & S/MIME certificates are not affected and remain valid until their planned expiry date.

Microsoft Exchange server: which SSL to use? What about autodiscover. subdomain?

Symptom: internal access is working properly, but accessing with Outlook from remote locations is showing an error that autodiscover.yourdomain.com is not part of the SSL certificate.

Solution:

Don't use a single domain certificate, but a wildcard or mutli-domain certificate that not only includes "mail.company.com" but also "autodiscover.company.com".

If you have already ordered a single domain certificate, you can use the 14 days money-back-guarantee and replace it with the proper one.


Multi-Domain certificate:

As with a single domain certificate, create the CSR for "mail.company.com". When placing the CSR inside "My InterSSL", add "autodiscover.company.com" as a SAN Slot.


Wildcard certificate:
Simply create a CSR for *.company.com.  The autodiscover. domain will automatically be covered by the wildcard certificate.



White Paper: Understanding the Exchange 2010 Autodiscover Service

https://technet.microsoft.com/en-us/library/jj591328(v=exchg.141).aspx

Was this answer helpful?

 Print this Article

Also Read

DNS Auth / DNS validation via CNAME

For DNS validation a CNAME entry has to be added in your domains DNS settings.You can use the...

Windows/IIS/MMC: What do to with "Error HRESULT: 0x80070520"?

In very rare cases this error might show up during installation on Windows Server. The cryptic...

IIS/Exchange: wie kann ich den "Extra Download" im SSL Labs Test für "USERTrust RSA Certification Authority" verhindern?

In mmc.exe das Zertifikat Snap-In für "Lokaler Computer" hinzufügen. Dann bei "Vertrauenswürdigen...

Sophos XG Firewall

Während PositiveSSL auf Sophos SG wunderbar funktionieren, berichten uns Kunden auf Sophos XG vo...

SECTIGO / COMODO CA Status

SECTIGO Status:http://sectigo.status.io/ORDER...