Windows Server 2008 R2 Thread, Sharepoint 2010/TMG SSL in Technical; I'm not sure if this is the right place to put this post but wasn't too sure where else I ...
1st February 2011, 11:12 AM #1
Sharepoint 2010/TMG SSL
I'm not sure if this is the right place to put this post but wasn't too sure where else I could post.
We currently have a sharepoint 2010 farm running internally which is then accessed externally via our TMG server.
I have got SSL working on the web listener for our main sharepoint domain sharepoint.cadcol.ac.uk but my issue is getting our My Site setup to use the same certificate.
I have been informed by our certificate service that they don't support wildcards unless it is on a subdomain, which we don't want.. so that leaves me with SAN certificates.
Has anyone done it this way? Or know of any information that would help?
Thanks in advance
IDG Tech News
7th February 2011, 01:19 PM #2
is your SharePoint 2010 Mysites in the same web app?
7th February 2011, 09:00 PM #3
Internally, what address are your users connecting to access MySite?
9th February 2011, 08:46 AM #4
sorry its taken a while to get back.
I believe I have created a seperate webapp for my site with the AAM of my.cadcol.ac.uk
I am trying to keep our internal and external URLS the same so internally staff would use sharepoint.cadcol.ac.uk & my.cadcol.ac.uk
Hope that answers your questions!
Thanks for replying
10th February 2011, 10:32 AM #5
You should have a seperate certificate in the listener for my.cadcol.ac.uk.
Originally Posted by craigg
You can't do it all on the same certificate.
10th February 2011, 10:40 AM #6
OK, that makes sense.
I have got the two urls running on the same listener. The only issue is - doesnt tmg moan if you try and create a new listener with the same port and IP address?
10th February 2011, 10:51 AM #7
you want one listener with 2 rules.
The listener does the authentication but needs to know the URL, IP and if you are running https it also needs to the certificate.
You then point the rules one for sharepoint home and one for my at the same listener so you also get single sign on.
10th February 2011, 10:57 AM #8
I ment to say rules before not urls ha.
So to clarify - I have two rules - 1: sharepoint 2: my both assigned to one listener.
I've got the sso set in the listener - but am unsure where i add the second certificate for "my". Or does that just sit on the server?
Sorry if im getting lost here.
10th February 2011, 11:05 AM #9
this is off the top of my head - I can't remember but i think its the listener - if its not - its the rule.
My heart is telling the listener
10th February 2011, 11:24 AM #10
You do assign the certificate in the listener.. the only issue is that it only gives you the option to assign a single cert for the web listener or one for each ip address. It doesn't give the option to add a second certificate.
I just forwarded your url to our web dev. He said he met you the other week at walsall. Small world.
10th February 2011, 01:40 PM #11
I need to be infront of a box to see it - I'll start install a TMG box later today.
Originally Posted by craigg
Thanks to apearce from:
Trapper (16th February 2011)
11th February 2011, 02:18 PM #12
I created a SAN certificate using the custom request option from within the Certificates MMC. So now i can use a single cert for both sites.
Thanks for all your help!
By Gatt in forum Internet Related/Filtering/Firewall
Last Post: 29th November 2010, 07:26 PM
By localzuk in forum Internet Related/Filtering/Firewall
Last Post: 4th November 2010, 10:37 AM
By neilault in forum Internet Related/Filtering/Firewall
Last Post: 16th October 2010, 12:50 PM
By GoldenWonder in forum Internet Related/Filtering/Firewall
Last Post: 14th October 2010, 11:06 AM
By localzuk in forum Windows Server 2008 R2
Last Post: 27th September 2010, 01:11 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)