cookd47
asked on
Replace existing Exchange certificate
I need to replace an existing SSL certifiacte to resolve certificate errors. It has the same name as the existing enabled certificate. When I run the Import-ExchangeCertificate cmd, I get an error Cannot import as there already is a certificate wi
th a thumbprint of 1CCD77D28F9664E6AC6A0E72B8 66C064D8D7 74D
When I try to remove the existing certificate, get this error
Remove-ExchangeCertificate : The internal transport certificate cannot be remov
ed because that would cause the Microsoft Exchange Transport service to stop
What would be the proper cmd sequence to complete this task?
th a thumbprint of 1CCD77D28F9664E6AC6A0E72B8
When I try to remove the existing certificate, get this error
Remove-ExchangeCertificate
ed because that would cause the Microsoft Exchange Transport service to stop
What would be the proper cmd sequence to complete this task?
The certificate you are trying to remove is internal self-signed certificate which is required for transport service to run.
You can run new-exchangecertificate cmdlet to get a new self-signed certificate.
Moreover, what are the error messages related to certificate and is it impacting mail flow ?
You can run new-exchangecertificate cmdlet to get a new self-signed certificate.
Moreover, what are the error messages related to certificate and is it impacting mail flow ?
cos having 2 certificates with with same name is fine. but with same thumbprint ? are you trying to import the same certificate again ?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Check out my blog post here: http://demazter.wordpress.com/2010/06/15/exchange-2007-ssl-certificates/