Import "general use" certificate for use with Exchange

Usually (that's the way I've always done it), we create a certificate request on the Exchange server, submit the request to the certificate authority (preferably a 3rd party public CA) and then import and enable the certificate for the appropriate Exchange
functions: IIS, SMTP, IMAP. POP, for example.
What if the company already has a wildcard certificate obtained for others uses or general use (that's how it was described to me).
It was suggested that we might just use that certificate...
I think it would be best to "go by the book" and proceed as mentioned above (creation of cert request on the Exchange server, submission to CA, and so forth). After all, you can obtain a certificate appropriate for use with Exchange for just over
$50.
But is the other option even possible?
I know you can export an Exchange certificate obtained by what I believe to be the preferred way and import it on another Exchange server or on a ISA/TMG machine.
But could you export a certificate from an Apache web server or a firewall device or... just something else, and use it for Exchange?
This article seems to suggest you could:
http://www.sslshopper.com/move-or-copy-an-ssl-certificate-from-an-apache-server-to-a-windows-server.html
But from what I know about Active Directory Certificate Services, there are all kinds of templates for various uses (disk encryption, email, code signing, etc.), presumably not interchangeable.
Please mark as helpful if you find my contribution useful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

So you want to export the existing wildcard certificate from a non-Windows system and import it to the Exchange server, correct?
The article shows that openssl will create a PFX (PKCS#12) file - so this should work.
I would not worry about templates. If the existing certificate is a SSL certificate (Extended Key Usage = Server Authentication) it should be OK.
From "PKI Best Practices" perspective / "what a certificate actually is intended to be" it would be better to have a dedicated certificate including all the Subject Alternative Names needed by Exchange - but I know there are limitations to a certain number
of names by public CAs. But theoretically if you ever wanted to revoke this wildcard certificate you would get into troubles as the same certificate is on very different systems.
Elke

Similar Messages

  • I have downloaded MAMP for Mac and want to use it for working with Wordpress. I had mysql installed before this and would like to uninstall it and use MAMP. It was easy to turn off Apache and PHP but don't know how to uninstall mysql. Please help!!

    I have downloaded MAMP for Mac and want to use it for working with Wordpress. I'm on an Imac with Maverick OS 10.9. I had mysql installed before this and would like to uninstall it and use MAMP. It was easy to turn off Apache and PHP but don't know how to uninstall mysql. Please help!!

    It depends on how you installed it. You have to shutdown the MySQL service first. If you used the standard, but obsolete Startup Item, you can do that with the Startup Item. If you created a launchd script, you can do it with launchctl. Once MySQL is no longer running, you can delete the Startup Item or launchd script and the rest of MySQL.

  • Can I use Keynote for Ipad with my PC?

    Can I use Keynote for Ipad with my PC?

    Unfortunately, this is not true either. For some reason, when you export to PDF, and open the PDF on a PC, it often says it cannot read the font and you get a PDF that looks like it's very sick.
    I'm not sure exactly how PDF works, but I don't know why it needs to be able to read a font correctly? I thought PDFs were readable on anything because it basically printed the document on a page, which is why you cannot edit it.

  • Can I use iMessage for free with someone in a different country?

    Can I use iMessage for free with someone in a different country?

    Suzanne515 wrote:
    dj,
    That is good to know. Have you  ever turned off wi-fi and used your cellular data instead? I'd like to know if your carrier charges you for the iMessage? I will be travelling with a +44 number on my sim card (Teletial based in the Channel Islands I believe) and some places like South Korea & Japan charge about  $30USD/MB. ( or 19 GBP/MB). The devil is in the detail. 
    My carrier, 3, does not charge extra for cellular data.   I pay £34 per month for a cellular plan with unlimited data.  So, no, I do not get charged for sending iMessages whether I am on cellular data or wifi.  If I were to try to send an iMessage to an international number that did not belong to an Apple device, it would send as SMS and I am sure that standard international rates would apply.  Apple iMessage is a different protocol for users with an AppleID.  There is no way for the carrier to distinguish it from any other data traffic.

  • Can I use Safari for G3 (with OS 9.2)

    I wanted to know - can I use Safari for G3 (with OS 9.2)
    If, yes.....where can I download....
    if somebody can help me....pls email to...
    [email protected]
    thanks

    Hi
    Welcome to Apple Discussions
    Adding to Klaus' comment, have a look at this article for browser options for OS 9.2.

  • How do I import an AVI file for use with FInal Cut Express

    How do I import or use an AVI file with Final Cut Express?
    Thank you. Do I need to convert my AVI file and what is the
    easiest way to do that? Thank you.

    You should convert the media to QuickTime. Without knowing any specifics most likely the simplest way is to use MPEG Streamclip.

  • Import wildcard certificate for use on GW 2012 webaccess

    My company already has a purchased wildcard cert. I want to ssl our upgraded webaccess utilizing that wildcard cert. We are running GroupWise 2012sp2 on SuSE11sp2, no OES or edirectory installed on the box. What I am looking for is a procedure for importing that already created wildcard into it. The instruction I keep seeing talks about createing a csr file and uploading it to the provider, which in our case is godaddy. Is there a way to use the already created wildcard and import it for use?

    In article <[email protected]>, Jlewter wrote:
    > My company already has a purchased wildcard cert. I want to ssl our
    > upgraded webaccess utilizing that wildcard cert. We are running
    > GroupWise 2012sp2 on SuSE11sp2, no OES or edirectory installed on the
    > box. What I am looking for is a procedure for importing that already
    > created wildcard into it. The instruction I keep seeing talks about
    > createing a csr file and uploading it to the provider, which in our case
    > is godaddy. Is there a way to use the already created wildcard and
    > import it for use?
    You can just focus on the apache side, and I suspect that your provider
    has docs that will handle this exactly.
    Andy of
    KonecnyConsulting.ca in Toronto
    Knowledge Partner
    http://forums.novell.com/member.php/75037-konecnya
    If you find a post helpful and are logged in the Web interface, please
    show your appreciation by clicking on the star below. Thanks!

  • Use 'iControl for GarageBand' with iMovie

    M-Audio's iControl is intended only for use with GarageBand: but it is possible to make it work with other programs to an extent. Here is a way of using the transport buttons and jog wheel with iMovie. (Tested with iMovie 4 but I assume it should work the same with later versions).
    Download MIDIstroke from
    http://www.charlie-roberts.com/midiStroke/
    (it's free).
    On the left in the three columns num/chn/value enter the values separated by / below, then map each set on the right side by entering the text as shown and ticking the 'shift' box where indicated
    24/1/1 - RIGHT
    24/1/127 - LEFT
    109/1/127 - SPACE
    110/1/127 - RIGHT [SHIFT]
    108/1/127 - LEFT [SHIFT]
    106/1/127 - SPACE
    107/1/127 - HOME
    111/1/127 - END
    Connect the iControl, run MIDIstroke and iMovie.
    Now the jog wheel will jog the movie backwards or forwards a frame at a time: however if you move it too fast it will fail to respond at all.
    The transport buttons are mapped as follows:
    Record and play will both toggle start and stop as appropriate in the program.
    Fast forward and back will make a single jump of ten seconds for each press (there is no repeat when held down).
    Go to beginning does just that, and the cycle button goes to the end.
    It's not ideal but if you already have an iControl and you don't have a mouse with a scroll wheel (and a driver for mapping to keystrokes), or something with a jog wheel, this might make editing a bit easier.
    You could use MIDI Monitor (also free) from
    http://www.snoize.com/MIDIMonitor/
    to tell you what commands are being sent by the various iControl buttons and knobs and then use those to map any way you want in any program -the only caveat is that you can't have different commands in different programs: and obviously there has to be a keystroke to do whatever it is you want.
    20 inch G4 iMac   Mac OS X (10.3.9)  

    Roger,
    this is grrrreat!
    I really LOVE such workarounds!!
    using a midi-controler for video-editing.. wowy...
    .. but on my desk, the M-Audio would be way too big, so I like to use this device:
    http://www.contourdesign.com/shuttlepro/

  • Replacing a 3 tier application using HTML for presentaion with a Java App

    Hello Everyone,
    Any help with this respect will be greatly appreciated..
    We have created an application which uses Weblogic as the Application Server and the front end is written in HTML which uses HTCs. Data from the front end to the back end is sent in the form of XML. The application as such is very slow, the lag is in the loading of the HTCs and in rendering the xml.
    Is it good to replace the front end part with a full blown Java application which uses Swing for the front end. I feel that this is not a good approach, but I do not have valid reasons to support my ideas.
    Please help me ...
    Thanks in advance
    Raj

    1) Swing is very very slow and if used will otherwise
    cause a very pathetic user experience (and believe me
    lady, it is true).Define slow and pathetic, I do not think you can because you are not work in her environment. Swing is accepted to be slower than AWT.
    2) Making a seperate client side application will
    cause
    a) Distribution problem - you have to go around
    nd giving it to all the clients (and potentially new
    ones, it could be a potential pain).
    b) Changes to the front end will result in
    in re-distributing the client application.
    c) Control over the client interface will be
    be compromised as it shall be spread across antire
    gamut of users. In web interface at least it is at one
    place and changes can be easily affected.Web logic totally nullifies this argument with their push technology (I don't remember what it is called), it will automatically update any and all parts of the application as the developers define and with options for delay of updates as the developer defines.

  • Using certificate for signing into portal

    Hello experts,
    we want to implement the functionality of certificate in the portal.
    If we have SAP passport then the pop up window lists the certificate from "User Certificate store", when i log on to service marketplace.
    We have a similar kind of requirement in our portal, that whenever user tries to log on into the portal a pop up should come which will list the certificates available in the store of his browser.
    This functionality should be similar to service marketplace one.
    If anybody has done this previously, please let me know the direction to proceed.
    thanks in advance, useful solution will be rewarded.
    rgds,
    Kedar Kulkarni

    Hi Kedar,
    I have configured SAP NetWeaver Portal using client certificates for user authentication. The configuration is a fairly straight forward process.
    Find the necessary information in the <a href="http://help.sap.com/saphelp_nw2004s/helpdata/en/62/881e3e3986f701e10000000a114084/frameset.htm">SAP Library</a>.
    Best regards,
    Martin

  • When I click on the Firefox icon, my homepage opens to about 95% and then it stops reponding. If I click on anything, I get the message that it is "not responding:. I have used Firefox for years with no problems. What can I do?

    I have used Firefox for years and it has been great until a few days ago. Now when I try to open it, the homepage from a few days ago opens, but the green bar on the lower right fills in about 95%. On the lower left it says "transferring data from l1.yimg.com but it freezes there. If I click on anything, it says (not responding) on the upper left. I have uninstalled Firefox twice and redownloaded it and the exact same thing happens. Please help me. Thank you, Dave Schumer

    See these articles for possible solutions:
    *[[Firefox is already running but is not responding]]
    *http://kb.mozillazine.org/Profile_in_use

  • What is the best image size to import to Elements 7 for use in HD 1920 x 1080 video being output to BluRay?

    Steve's book (love it!) suggests something like 1000 x 750 which seems too small for HD.  It would seem that 1920 x 1080 would not require any scaling or adjustment for use in a HD wide screen BluRay project.

    The 1000x750 size is based on SD Project and Assets. In your case, you'd want 1920x1080, if that is your output Frame Size. If you will need to pan on any images that are fully zoomed out, you should calculate the amout of pan that you need, and then resize to that, keeping the Frame Sizes as close as you can to your Project.
    Good luck,
    Hunt

  • Can I use Labview for linux with a student license?

    I recently aquired a copy of Labview, student edition. The package only includes the Mac and Windows versions. Would it be possible for me to obtain/use the linux version under this license? How?

    Hi, thanks for using the National Instruments' Forums,
    I would recommend you to contact your technical representative in order to give you detailed information about the Linux version. From what country are you? I can help you contacting you and your technical representative.
    Thanks again for using the Forum
    NorSa
    AE LATAM
    NorSa
    NI Applications Engineer Latin America
    Para Soporte entra aquí

  • Windows Server Backup for VM with Exchange

    We have Server 2012 standard and its running Hyper- V. The VM that is running is Server 2008 R2 Standard which is also our Exchange 2010 Server.
    I know you can use Server backup 2012 to easily backup Hyper-V machine. But will it be so easy if that VM is running Exchange on it? I am going to back it up to an external drive. 
    This article shows how to backup a HV machine but I can't really find anything on a HV machine with exchange.
    http://virtualizationreview.com/blogs/virtual-insider/2013/02/back-up-hyper-v-vms.aspx

    Hi,
    You could refer to the thread below to know the difference of the two methods:
    Hyper V 2012 Backup - best practice
    http://social.technet.microsoft.com/Forums/windowsserver/en-US/3c6385c0-d1db-40ee-a371-8346f6067973/hyper-v-2012-backup-best-practice
    Regards,
    Mandy
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • Import/export codecs/settings for FCE with HMC40 footage?(lengthy post)

    Hi all,
    I am pretty new to video editing in FCE, and brand new to 'tapeless workflow' (just bought a Panasonic HMC40)
    so am not sure of all the technical protocol yet.
    What is AVCHD as opposed to DV or HDV?
    What is meant by 'transcoded'?
    For the following series of questions, my final usage will be for the web, flash video (.flv file as converted in Adobe Media Converter from the quicktime file exported from FCE, unless there is a method to export directly to a flash video file from FCE i.e. what is the FLC format?) streaming from my server and played with a flash player (.swf file)
    Obviously, I would like to achieve the best quality possible while still maintaining a fast streaming time
    here is an example of the above: Road Runner Akron Marathon
    I see that if I go to menu-->final cut express-->easy setup I get a window with default import settings as in figure 1 below
    figure 1
    Which import format is best for footage from the HMC40, shooting at 108024p? 108030p? see figure 2 below
    figure 2
    Which import frame rate is best for footage from the HMC40, shooting at 108024p? 108030p? see figure 3 below
    (don't understand the odd frame rate choices of 25 and 29.97)
    figure 3
    The default import codec is DV-NTSC as seen in the popup menu in figure 4 below
    figure 4
    which of the above import codecs would you recommend for footage from the HMC40 if I am shooting in 108024p? 108030p?
    I am using the 'log and import' option for importing footage directly into projects from the SDHC card.
    Does the check box option under the 'import settings' tab mean that audio/video will be compressed
    with the import codec specified during 'import setup'? see figure 5 below
    figure 5
    When exporting from FCE with quicktime conversion, is it best to use
    the same type of codec as the import codec? see fig 6 below
    figure 6
    Thanks very much for any advice. Much appreciated.
    Best,
    Dennis
    Dennis Roliff Photography

    Wow! A huge amount of questions, almost all of which are available using search engines. The forum isn't really designed to give you a detailed instruction on digital video or on basics of how to use the application.
    AVCHD is a highly compressed MPEG-4 based HD format. DV is a standard definition format. HDV is an MPEG-2 based HD format.
    FCE does not encode Flash. You need third party software.
    24p is not supported in FCE.
    If you're shooting HD you should select HD.
    25fps is for PAL based formats. 29.97fps is for North American based video standard. 24fps is a film frame rate. Most video cameras do not shoot 24fps, but 24fps recorded at 29.97 with pulldown. If your camera shoots true 24fps, it is not supported in FCE.
    What you select depends on exactly what you shot. Read the camera manual carefully for the different options of frame size. Native 24p is not supported in FCE. 30p can be ingested using a 1080i60 preset.
    How you export depends of where you're trying to get to. If you're going to third party encoding software you should export to QuickTime Movie.

Maybe you are looking for

  • PI 7.31 (single stack) posting RFC gives this error: RFC_ERROR_SYSTEM_FAILURE: Processing of change number CO-01234 cancelled (raised by system ECCHostXYZ)

    I'm trying to determine if I am dealing with an RFC connection issue or just an error resulting from the RFC itself. The error says "Processing of change number...cancelled (raised by...ECCHostXYZ)". I thought this was a problem with my RFC config be

  • Safari PDF Veiwing Problems

    Having problem in viewing pdf files using the Safari browser. I have adobe professional installed on my machine. I have read in this forum that Safari has a build in pdf reader and to delete the adobe plug-in in the library/internet plug-in folder. I

  • System 9 BI+ roles

    Hi, my question is about Workspace roles. Normally we give users "Viewer" role to Hyperion System 9 BI+ that they can run reports in Workspace. What role we have to give if a end user wants to export Workspace reports to Excel? What is a "minimum rol

  • Ipod Shuffle (2nd gen) with FM Car Transmitter

    I know that there are several discussions about this but need a bit of help! We have a car FM Transmitter plugged in to the cigarette lighter socket which will quite happily accept the Ipod shuffle and play through the car stereo until we accelerate

  • Remote arrow keys intermittently working on CHS 435HDC

    The arrow and ok buttons on the Fios remote and my Logitech harmony remote intermittently work on the dvr menu and program info screens. This only started happening within the last week or so after the automatic STB update was released.