How do I split HUB/CAS role into two servers?

The question is a bit misleading, I apologize. I actually know what to do, but am not sure about one thing, certs. I have a server that acts are both both a hub, CAS and public folder role server. I am moving the CAS role and public folders to another server and leaving the original as a HUB-only server.

The one thing I am not sure about is if I have to create any certificates on the new server or copy certs from the current server to the new one?

thank you
cyberleo2000Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

RadweldCommented:
Only you know what Certs are installed on the existing multi role server and how the cas is accessed by your users. However it's likely you have a public certificate already and in order to prevent connection issues your new cas will need the certificate as well. The hub will also need a certificate to continue to sign TLS smtp traffic.

If all these services were combined then there is no reason why you can't export the cert on the old server and import it on the new one. The only issue you might find is your internal URL will need to match a name on the cert. by default exchange sets the internal URL to the Servername and unless the Servername fqdn is in the cert your will get certificate errors. If your using split brain DNS (internal domain name the same as external) then you can set the internal URL the same as your external.

Hope this makes sense.
MASEE Solution Guide - Technical Dept HeadCommented:
Add the FQDN of the new server to the certificate as SAN then re-key your certificate

Import the new certificate to both the CAS and the new HUB
Import by EMC
Import by EMS

You can export certificate from the current server and import it. Check this

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Antonio VargasMicrosoft Senior Cloud ConsultantCommented:
Use the EMC to export the certificate (right click the certificate on Server configuration-> server name on the right hand pane).. use the same method to import the certificate on the new server.
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

cyberleo2000Author Commented:
Does this remove the cert from the server or only make a copy of it. I didn't think I could have the same cert on two seoratae servers.
MASEE Solution Guide - Technical Dept HeadCommented:
This will take a copy of the cert. installed.
Antonio VargasMicrosoft Senior Cloud ConsultantCommented:
Only copy. after having the certificate exported to the new server, and if you dont need the certificate on the old server you can also deleted with EMC. You can have the certificate on all the servers you want and need to.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.