Replacing your expiring IP-HTTPS certificate
DirectAccess has the ability to utilize certificates in a couple of different ways. Depending on how you configure DA, there are different places that certs may or may not be used, but one common variable to all DirectAccess implementations is IP-HTTPS. This is a transition technology that is always enabled on a DirectAccess server, and it requires an SSL certificate to work properly. IP-HTTPS traffic is coming in from the Internet, and so I always recommend that the SSL certificate used for the IP-HTTPS listener to be one purchased from a public CA entity.
As with any SSL certificate, they are only valid for a certain time period. Typically these certificates are purchased on a one, two, or three year ...
Get Windows Server 2012 R2 Administrator Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.