Adding a Subject Alternative Name Field to an Existing Certificate

We’re using a Windows Server 2003 CA to provide certs for our VPN users, and it’s been working well. The decision was just made to allow our iPad and iPhone users access to the VPN, however this apparently requires an additional Subject Alternative Names field to be added to the server’s cert. This doesn’t appear to be too hard (certutil -setreg policy\EditFlags +EDITF_ATTRIBUTESUBJECTALTNAME2). My question is, will adding this field affect any of the other systems that are already using the VPN? I don’t think it should, but I need to be sure before we make any changes to the existing infrastructure.

From the Apple iPhone OS Enterprise Deployment Guide:

“The server identity certificate must contain the server