Ping a Specific Port

Question

Danilo Brambilla

Asked: 2011-09-16 05:55:18 +0800 CST2011-09-16 05:55:18 +0800 CST 2011-09-16 05:55:18 +0800 CST

Drawbacks in use an internal CA for a production Exchange 2007/2010 SAN certificate

772

Is there any critical drawback in using an internal CA to release an Exchange 2007/2010 SAN certificate for a production environment?

1 Answers

Voted

Jason Berg · Answer 1 · 2011-09-16T06:17:15+08:00

Best Answer

Jason Berg

2011-09-16T06:17:15+08:002011-09-16T06:17:15+08:00

Yes. There's more setup involved when working on non-domain computers.

RPC over HTTP requires a trusted certificate. So if you use your own, you have to install the root on each computer that is going to use this technology. With AD, not a big deal. Without AD (like for employee computers at home) it's really just a pain. With autodiscover, most users can now setup their own email easily. If you're using a self signed cert, that's no longer the case.

There's also a case to be made regarding security. You don't want your users to get used to clicking past certificate errors when they're using OWA on an outside computer. What happens on the day that that certificate error is caused by a man in the middle attack?

Certificates are really cheap nowadays. I think I just spent $150 on a 3 year SAN certificate. So just pay the money for the cert.

3

Drawbacks in use an internal CA for a production Exchange 2007/2010 SAN certificate

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?