new-exchangecertificate enable for SMTP only

I have been reading the examples regarding the new-exchangecertificate cmdlet for exchange 2007 and I wish to double check a couple of items since I am using a 3rd party certificate for IIS / active sync use and the self-signed cert for all other reasons:  after executing the command you are warned you are about to overwrite the SMTP certificate - it offers yes or yes to all.  It specifies the existing certificate for the local server name.
1) My first question is can you add language to the command to specify that the certificate is for smtp/imap/pop only?  Or is that the difference between yes and yes to all?
2)  If there is no way to add that language to the certificate should I just specify YES and will that do the same?
3)  Finally if there is no way to specify what services it will be used for do I just skip the separate part of enabling the new certificate for the IIS service (which has its own certificate listed) and then remove the old locally signed cert?
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

By simply running new-exchangecertificate exchange will do exactly what you are trying to achieve it won't overwrite your 3rd party one for IIS don't worry.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Rick FeeMessaging Engineer - Disaster Recovery EngineerCommented:
Yes when after you import/create the cert the enable command can be narrowed down.
Enable-ExchangeCertificate -thumbprint <certificate-thumbprint> -services "POP,IMAP"
Enable-ExchangeCertificate -thumbprint <certificate-thumbprint> -services "IIS"  
Enable-ExchangeCertificate -thumbprint <certificate-thumbprint> -services "SMTP"  
sfeder11554Author Commented:
I also found this article which seems to indicate that you can add the services string to the command:
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.