The document discusses changes to the standards for public SAN certificates by the CA/Browser Forum. As of November 1, 2015, certificates will no longer be able to include non-unique names, also called internal server names, that cannot be externally verified. This is because such names pose a security risk, as they are not truly unique and could be falsely represented. The changes will affect services that currently use certificates for internal server names, requiring administrators to prepare by obtaining new certificates without such names before the deadline. Failure to do so could result in issues ranging from annoyances to catastrophic consequences for their systems and services.