Hybrid Deployment and Wild Card certificate

Occasional Contributor

Hi All,

i have a hybrid deployment with Exchange 2013, can i use a wild card certificate with the hybrid server for the autodiscover and hybrid records?

11 Replies

Hi Teka,


Yes, you can use it for all Hybrid deployment.

Thanks for the reply,

so i will import it as *.mydomain.com and that's it? athen i point autodiscover and hybrid DNS records to it?

Yes, that's it.

Thanks for your support.


do i need to install the new certificate in all servers or only the hybrid server and keep the old certificate on the other servers.

For best experience and to keep the configuration simple, you should install the same certificate across all Exchange Infrastructure.

and what will happen if i used 2 certificates 1 for the hybrid server and another one for other servers?

Hi Teka,


You can read more at the article as it mention "Use as few certificates as possible"




You can use more than one certificate but be is advised to use a few or just the Wildcard with SAN's, but it always depend on the third party CA.

Thanks Silva for your support

@Nuno Silva - We are using a wildcard certificate on our Exchange 2019 Hybrid server.  All mailboxes are in the cloud.  The certificate is only assigned IIS and SMTP.  There is only one on-prem mailbox in this server. We renewed the wildcard certificate from the same company and the same domain information.  Exchange server says the certificate is valid after I imported it. Do I still need to re-run the Hybrid Configuration? I prefer not to rerun if not needed. I read somewhere that I don't need to re-run if the names have not changed. Do you know if this is true or we should always rerun the Hybrid configuration? Thank you. 

Hi @Dobongsoon,


Is advised to run Hybrid Configuration Wizard to update the certificate regarding that could have some changes and Hybrid Configuration Wizard will do the update of that configurations.


Best Regards,
Nuno Árias Silva
MVP Office Apps and Services