Home

Exchange 2010 ssl certifiate with multiple domains for Hybrid setup

%3CLINGO-SUB%20id%3D%22lingo-sub-654113%22%20slang%3D%22en-US%22%3EExchange%202010%20ssl%20certifiate%20with%20multiple%20domains%20for%20Hybrid%20setup%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-654113%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3EWe%20have%20Exchange%202010%20SP3%20with%20200%20users%20with%20Mimecast%20as%20Email%20security%20with%20different%20SMTP%20domains%20like%20user1%40domain1.com%2C%20user2%40domain2.com%2C%20user3%40domain3.com.%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EAll%20are%20in%20single%20AD%20domain%20%22domain1.com%22.%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EWe%20would%20like%20to%20migrate%20one%20SMTP%20domain%20(%40domain2.com)%20users'%20(around%2050)%20mailboxes%20onto%20Exchange%20online.%20Planning%20to%20change%20their%20UPN%20from%20AD%20domain%20to%20SMTP%20domain%20(%20user2%40domain1.com%20to%20user2%40domain2.com)%20for%20AAD%20sync.%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EOn%20exchange%20server%20we%20have%20wildcard%20certificate%20for%20%40domain1.com%20configured%20for%20SMTP%20and%20IIS.%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EDo%20we%20need%20to%20new%20public%20SSL%20certificate%20for%20%40domain2.com%20for%20OWA%2FActiveSync%2Fautodiscover%20for%20Office%20365%20migration%20as%20HCW%20looks%20for%20certificate%3F%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EIf%20generate%20CSR%20from%20Exchange%20server%2C%20it%20is%20adding%20all%20three%20domains%20in%20the%20list.%20Shall%20keep%20all%20entries%20as%20Exchange%20added%20or%20keep%20only%20the%20required%20domain%20and%20remove%20other%3F%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EDo%20i%20need%20to%20assign%20new%20certificate%20to%20SMTP%2FPOP%2FIIS%3F%20Will%20it%20overwrite%20existing%20(%40domain1.com)%20certificate%3F%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EIt's%20confusing%20for%20me%20how%20to%20handle%20certificate%20for%20Hybrid%20migration%20for%20one%20SMTP%20domain%20from%20Exchange%202010%20server%20hosting%20multiple%20SMTP%20domains.%3C%2FSPAN%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3CSPAN%3EThanks%20in%20advance%20for%20your%20help.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-654113%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EHybrid%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Venkat Kantamneni
Senior Member

We have Exchange 2010 SP3 with 200 users with Mimecast as Email security with different SMTP domains like user1@domain1.com, user2@domain2.com, user3@domain3.com.

All are in single AD domain "domain1.com".

We would like to migrate one SMTP domain (@domain2.com) users' (around 50) mailboxes onto Exchange online. Planning to change their UPN from AD domain to SMTP domain ( user2@domain1.com to user2@domain2.com) for AAD sync.

On exchange server we have wildcard certificate for @domain1.com configured for SMTP and IIS. 

Do we need to new public SSL certificate for @domain2.com for OWA/ActiveSync/autodiscover for Office 365 migration as HCW looks for certificate?

If generate CSR from Exchange server, it is adding all three domains in the list. Shall keep all entries as Exchange added or keep only the required domain and remove other?

Do i need to assign new certificate to SMTP/POP/IIS? Will it overwrite existing (@domain1.com) certificate?

It's confusing for me how to handle certificate for Hybrid migration for one SMTP domain from Exchange 2010 server hosting multiple SMTP domains.

Thanks in advance for your help.