I've never had to work with multiple servers before in an Exchange environment. I've mostly worked at small companies where all of the Exchange services/roles are installed onto the same single server.
In my current environment we have 3 Exchange 2010 servers, 1 mailbox server and 2 CAS servers. Our SSL Certificate is about to expire and I have all of the domain names that need to be included as SANs on the UCC certificate. However, I'm a little confused as to how the whole process works.
1. Do I initiate the certificate request from just one of the CAS servers?
2. Once our CA has processed our certificate request and go to install it, i'm assuming I simply install it on the server I initiated the request from and hit "Complete Pending Request." But then how do I install it for our other CAS server? Simply just simply import it?
3. Does the certificate need to be installed onto the Mailbox server?
I've also never had to work with CAS Arrays before, which is how our two CAS servers are configured. What other pitfalls am I missing here?
The domains i'll be including in the cert are as follows:
1. mail.mycompany.com
2. outlook.mycompany.com
3. cas1.mydomain.local
4. cas2.mydomain.local
5. autodiscover.mycompany.com
6. autodiscover.mydomain.local
7. mydomain.local
8. mycompany.com
I understand that I don't have to include the internal FQDNs on the cert but our previous one did and so I will include them again in the new cert so that I don't inadvertently break something. (i inherited this Exchange environment and I'm new with the company so I'm not terribly sure why things were done this way)
Is there anything else I should include since we're using a CAS array? Any other advice? Thanks for the help!