HelloI want to secure Exchange communication with a ssl cert.We use owa and activesync for external access and Outlook internal.My question is will Outlook use only the hostname (server1) or use outlook the hostname with domain (server1.mydomain.com)?I ask because my registrar told me that hostname only is not allowed any more and I have read in another thread that the hostname should be in the cert.(third answer from tenny26)http://social.technet.microsoft.com/Forums/en-US/exchangesvradmin/thread/db0ff84b-51e8-4e14-b843-4a8412afd03bregardsBjörn

He is correct that an unqualified hostname will not work on the Internet unless you're using a VPN. To secure Exchange communication with an SSL certificate then you want to use Outlook Anywhere, and ensure that you restrict access to use SSL only. When you publish Autodiscover, typically with the hostname (A record) autodiscover.company.com, it supplies the FQDN of your Exchange server. You can use the ExternalURL property of the various virtual directory cmdlets to ensure that you publish the correct hostnames. The hostname needs to be in the certificate only if you use the hostname as your URL, as inhttps://mail/owa. In general, I prefer to use an internal Microsoft CA for internal certificates, including a UCC certificate with all possible names, including all CAS hostnames qualified and unqualified, for internal purposes, and then deploy an ISA server install on it a third-party certificate with the required hostnames, such as owa.company.com and autodiscover.company.com, for use with Internet access.-- Ed Crowley MVP"There are seldom good technological solutions to behavioral problems."."Bjoern123" wrote in message news:0acc24c0-3cb3-4242-bb37-61f3a49cfc9d...HelloI want to secure Exchange communication with a ssl cert.We use owa and activesync for external access and Outlook internal.My question is will Outlook use only the hostname (server1) or use outlook the hostname with domain (server1.mydomain.com)?I ask because my registrar told me that hostname only is not allowed any more and I have read in another thread that the hostname should be in the cert.(third answer from tenny26)http://social.technet.microsoft.com/Forums/en-US/exchangesvradmin/thread/db0ff84b-51e8-4e14-b843-4a8412afd03bregardsBjrnEd Crowley MVP "There are seldom good technological solutions to behavioral problems."