In our current setup we have a Hub Transport server and a seperate Client Access server. The HT server was using a self signed cert and the CA server was using a 3rd party signed cert that was going to expire and was tied to our direct outside name ex. owa.example.com.
I just purchased a wildcard ssl cert *.example.com and I was able to install it on the HT server for smtp and on the CA server for IIS but I get an error for POP and IMAP4 when I try to assign them to the new cert.
I've seen several posts regarding this issue and I think it'll work, but my main question is: What are the implications of changing the cert? Will my intranet outlook clients work with no problems? How about OWA or activesync? I want to make this transparent to the users, is that possible?