Hi,
We are working with a company who at the moment does not have a reverse proxy so will have to use public certs on their cas servers. However obviously the caveat to that internal names will not be allowed on internal certs in 2yrs time so will be no option to go with RP as they cant change the internal domain name.
However we are using an Kemp Load Balancer for OWA/AO/EAS/SMTP and intend to do SSL offloading. Will this solve our problem i.e. can we import the public cert in the HLB with just the public domain names on it and have internal certs on CAS Servers. Or do we still need to install the public cert on the CAS Servers with the public and internal server name?
i.e. with ssl offloading using hlb does the cert on the cas also need to contain the EWS names + server fqdn or will it suffice to have the only the public ews names on HLB and just server fqdn on internal cert on cas
Hope I havnt confused :-)
Celtic