– How many public certificates do I need, in order to configure external access to my OCS 2007 pool? – 3. One for the HTTP Reverse Proxy, one for the OCS Access Edge and one for the OCS Web Conferencing Edge. – Even if I'm using a consolidated Edge topology? – Yes! – But can't I just use a super-mega-jumbo SAN certificate with all the required alternative names? – No! – Why not? – Because!
Well, to tell you the truth it's not "because", it is the official support policy written in the OCS 2007 Supportability Guide, the OCS 2007 Planning Guide and the OCS 2007 Edge Server Deployment Guide.
Here's a summary of the external certificate requirements:
– But why can't I just use my internal CA? – Well, to tell you the truth, it's technically possible, as long as you remember these guidelines:
It is very unlikely that these requirements will change with the release of Office Communications Server 2007 R2.