Hi guys, Just to double check, it is possible to use internal certificate with SAN attribute to be map to my outside interface right for my SSL VPN so that any of my device's as long as they are accessing *.mycompany.com will not show any certificate...