Sbs2008: renew or replace expired self-certified certificate


On a sbs2008 server, self-cert generated 2 years ago on 2nd jan.2010 has expired causing problems for many Outlook users especially OWA & OLanywhere.

How do I renew the certificate if this is possible. Will I need to re-install renewed cert on each client pc?

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Brad HoweDevOps ManagerCommented:
Here you go and yes each client will need it added.

create new Self-Signed Certificate
1. Goto the Windows SBS Console, click on Network Tab, then Connectivity Tab

2. Click on the certificate icon, then click the “view certificate properties” in the right pane. In the General tab of the new window, it will show the dates that the self-signed certificate is valid for.

3. In the “Connectivity Tasks” area, click “setup your Internet address”, go through the wizard to renew your self-signed SSL certificate.

4. Check the certificate properties,should be valid for another two more years.

Clients install Certificate Authority

Vista/Win7 - Run IE with ELEVATED PRIVILAGES (Run as Administrator)

1. Click Certificate Error
2. Click view certifcate information
3. Click Installl Certificate...
4. In Wizard, Select "place all certficates in the following store"
5. Select "Trusted Root Certification Authorities"
6. Click Next.
7. Click Yes to install
8. Click OK.

Certificate error will now be gone.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Jay_RatansiAuthor Commented:
Hades666, many thanks for your detailed response.

The cert was valid until 2nd Jan.2012. I'd tried 'setup your internet address' method before earlier & on attempting again, received the error:

"Internet Address Management
In order to register a domain name, you must first run the Connect to Internet Wizard..."

This is a busy server & to run something like Connect to Internet Wizard I'd prefer to be onsite just in case. I haven't run this so far.


Jay_RatansiAuthor Commented:
Running Connect to Internet Wizard resolved the issue. new cert was generated.

Thanks for your help.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.