In an effort to tighten security on the Internet by creating more stringent standards, the CA/Browser Forum recently formulated new guidelines in their Baseline Requirements for issuing SSL certificates.
One of the new changes is the elimination of certificates using internal names. This change makes it impossible to obtain a publicly trusted certificate for any host name that cannot be externally verified as being owned by the organization that is requesting the certificate.
As a result, all Certificate Authorities must phase out the issuance of certificates issued to either Internal Server Names or a Reserved IP Address by October 2016. In accordance with this new standard, DigiCert will no longer issue certificates to these internal names with expiration dates after November 1, 2015.
Corporate users of Unified Communications Certificates are the most affected by this change, needing to reconfigure their network and certificates to reflect this new requirement.
In order to help customers move away from internal server names, they created this cool tool:
Tool is still to be considered BETA!