Solved

SSL renewal on Exchange 2007

Posted on 2011-03-16
8
591 Views
Last Modified: 2012-05-11
We have a single Exchange server environment in which the SSL has expired and now we need to renew it.  I think I started the procedure incorrectly.  Via IIS, I created the CSR and received the certificate from the CA.  Now that I look a little further, I believe I needed to create the CSR via PowerShell.  Is that correct?  Can someone assist me with the steps necessary to renew our certificate.  BTW - the services bound to the certificate are: IMAP, POP, IIS, SMTP

Thanks!
0
Comment
Question by:custominet
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
8 Comments
 
LVL 25

Expert Comment

by:-MAS
ID: 35149793
create the csr using digicert's csr creation tool.

Just google it. You will get the url

0
 
LVL 25

Expert Comment

by:-MAS
ID: 35149815
create the csr using digicert's csr creation tool.

Just google it. You will get the url

0
 
LVL 25

Expert Comment

by:-MAS
ID: 35149834
create the csr using digicert's csr creation tool.

Just google it. You will get the url

0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 25

Expert Comment

by:-MAS
ID: 35149866
powershell is better way to generate csr.

You will get the command from digicert's website
0
 
LVL 25

Expert Comment

by:-MAS
ID: 35149875
powershell is better way to generate csr.

You will get the command from digicert's website
0
 
LVL 25

Assisted Solution

by:-MAS
-MAS earned 75 total points
ID: 35149882
powershell is better way to generate csr.

You will get the command from digicert's website
0
 
LVL 7

Accepted Solution

by:
waleeda earned 175 total points
ID: 35151014
Use the EMC to renew an Exchange certificate
You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Client Access server security settings" entry in the Client Access Permissions topic.

In the console tree, click Server Configuration.
Select the server that contains the certificate, and then select the certificate you want to renew.
In the action pane, click Renew Exchange Certificate.
 On the Renew Exchange Certificate page, select the services you want to assign to the renewed certificate. The services that are checked are currently assigned to the certificate.
 When you click Assign, the Progress page will confirm your selections and try to renew the certificate.
 Click Yes to overwrite the existing certificate with the renewed certificate.
 The Completion page will display the status of the request in addition to the syntax of the cmdlet needed to renew the certificate.
   Use the Shell to renew an Exchange certificate
You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Client Access server security settings" entry in the Client Access Permissions topic.

This example renews the Exchange certificate.

 Enable-ExchangeCertificate -Server 'EXCH-H-868' -Services 'IMAP, POP, IIS, SMTP' -Thumbprint 'AD19B141228C7CF98B5F78DCED978B7C45E15434'


reference:
http://technet.microsoft.com/en-us/library/ee332322.aspx
0
 

Expert Comment

by:MetraTechIT
ID: 36981960
I cannot find the Renew Certificate page mentioned in this article. I followed the instructions here, but cannot get to that page....

What am I missing?
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question