• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1132
  • Last Modified:

How do I renew my STARTTLS certificate?

The TLS certificate on my hub transports is about to expire soon. I inadvertently ran the command below without the -whatif parameter and generated a new cert on one of my two hubs. I noticed that the issuer is different than the current one cert. I tried to remove it but I got an error

remove-exchangecertificate -thumbprint CFE500CCA6CC282E4E881E1EECEB9CCC3DD36E0B

Remove-ExchangeCertificate : The internal transport certificate cannot be removed because that would cause the Microsof
t Exchange Transport service to stop. To replace the internal transport certificate, create a new certificate. The new
certificate will automatically become the internal transport certificate. You can then remove the existing certificate.
Parameter name: Thumbprint
At line:1 char:27
+ remove-exchangecertificate  <<<< -thumbprint CFE500CCA6CC282E4E881E1EECEB9CCC3DD36E0B


Will this cause a problem or can I simply create a new cert with the proper issuer informnation and then delete this one?

thank you
0
cyberleo2000
Asked:
cyberleo2000
1 Solution
 
geieeaCommented:
Create the new cert request and once it is fulfilled, assign the appropriate services to it. Then you may delete the old one.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now