We are currently running Exchange 2007. All our clients access the EWS service on Outlook via the internal server name server.domain.local. For this we use a self-signed certificate from the domain's CA. For OWA we would like to use a official certificate, as it needs to be accessible from anywhere e.g. https://owa.domain.com/ In order to access owa, we have a public IP natting (:443 and :80) to the exchange server.
How can I install a separate certificate only for owa and maybe ecp? I only can add one certificate per IP and as IIS only knows the internal IP there is no way to assign a public certificate.
Following two print-screens concerning the IIS configuration:
Basically, you should have a second NIC for this.
If another NIC is not an option, try adding a virtual IP to the NIC, and then assign the certificates.
I tried it once myself and it half worked, but didn't had enough time to do more testing.