Advertisement
We have an Exchange server with 2 mailboxes in use. And we also have DLs.
\nWe are in the process of creating CSR for new certificate.
\nWe know that 2 URLs are in use and have DNS records published.
\nApart from that , should we add the external and internal virtual directory URLs and autodiscover URLs in the certificate.
\nSome of them have internal DNS records, but I dont see external DNS records published for any of these URLs.
\nHow can we determine what domains need to be added as SAN in certificate.
\nWildcard is not an option here.<\/p>\n
Thanks<\/p>","upvoteCount":6,"answerCount":8,"datePublished":"2025-07-15T05:55:33.262Z","author":{"@type":"Person","name":"spiceuser-phdec","url":"https://community.spiceworks.com/u/spiceuser-phdec"},"suggestedAnswer":[{"@type":"Answer","text":"
We have an Exchange server with 2 mailboxes in use. And we also have DLs.
\nWe are in the process of creating CSR for new certificate.
\nWe know that 2 URLs are in use and have DNS records published.
\nApart from that , should we add the external and internal virtual directory URLs and autodiscover URLs in the certificate.
\nSome of them have internal DNS records, but I dont see external DNS records published for any of these URLs.
\nHow can we determine what domains need to be added as SAN in certificate.
\nWildcard is not an option here.<\/p>\n
Thanks<\/p>","upvoteCount":6,"datePublished":"2025-07-15T05:55:33.381Z","url":"https://community.spiceworks.com/t/san-names-for-exchange-certificate/1223762/1","author":{"@type":"Person","name":"spiceuser-phdec","url":"https://community.spiceworks.com/u/spiceuser-phdec"}},{"@type":"Answer","text":"
Hi Poblano,<\/p>\n
Please use below steps to add SAN name to certificate.<\/p>\n
Anytime a SAN is added to an existing cert, a new CSR is required. The CSR must contain all the existing as well as new SANs. Consult your server manual for instructions on how to add SANs to the CSR. The common name for the CSR must be the same as the original certificate.<\/p>\n
Please see the certificate reissue article for details on how to gain access to this portal.<\/p>\n
Click Reissue Certificate which will take you to the section displayed below.<\/p>\n<\/li>\n
Click Redeem under Edit & Add Additional Domains<\/p>\n<\/li>\n
Enter the CSR created in Step 1 along with the SAN(s) that will be added.<\/p>\n<\/li>\n<\/ul>","upvoteCount":3,"datePublished":"2025-07-15T06:05:11.654Z","url":"https://community.spiceworks.com/t/san-names-for-exchange-certificate/1223762/2","author":{"@type":"Person","name":"naveenkatikam","url":"https://community.spiceworks.com/u/naveenkatikam"}},{"@type":"Answer","text":"
I know the steps to generate CSR and add SAN names to it.
\nWe are trying to see if all these are required in our new certificate.<\/p>","upvoteCount":4,"datePublished":"2025-07-15T07:04:16.827Z","url":"https://community.spiceworks.com/t/san-names-for-exchange-certificate/1223762/3","author":{"@type":"Person","name":"spiceuser-phdec","url":"https://community.spiceworks.com/u/spiceuser-phdec"}},{"@type":"Answer","text":"
Not sure what you’re SAN allotment is but I would add them, especially for the external virtual directory URLs and autodiscover. You mind have a need for them later on.<\/p>","upvoteCount":1,"datePublished":"2025-07-15T15:52:26.645Z","url":"https://community.spiceworks.com/t/san-names-for-exchange-certificate/1223762/4","author":{"@type":"Person","name":"capef3ar","url":"https://community.spiceworks.com/u/capef3ar"}},{"@type":"Answer","text":"
You’re running exchange for two mailboxes? I’d sure look in to O365.<\/p>","upvoteCount":2,"datePublished":"2025-07-15T16:25:39.738Z","url":"https://community.spiceworks.com/t/san-names-for-exchange-certificate/1223762/5","author":{"@type":"Person","name":"kwelch007","url":"https://community.spiceworks.com/u/kwelch007"}},{"@type":"Answer","text":"