Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Remove and reinstall cert on Exchange 2010 server

Posted on 2012-03-16
Medium Priority
Last Modified: 2013-03-29
Upon deploying my first Exch 2010 server, I made the mistake of putting the wrong type of certficate on there. I went with a single cert...while this is working for the one feature (webmail), I would like to 're do' and put the proper UCC certificate on there.

With older Exchanges, you could run the IIS 'wizard', remove the old cert and just re-run and install the new one.

Is it a more complicated process with Exch 2010? Some guidelines would be appreciated.


Question by:tnorman
  • 3
  • 3
LVL 12

Accepted Solution

DLeaver earned 2000 total points
ID: 37731122
Follow these instructions to import the cert


And to assign the necessary services use this link (I recommend using EMS for this part)


Author Comment

ID: 37731139
Will this remove/handle the existing certificate?

Author Comment

ID: 37731208
I just checked the first link, and I don't think that is what I am looking for. I won't be installing a previously exported cert, rather installing a brand new one. I am concerned about the existing certificate that is already there when doing this.
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

LVL 12

Expert Comment

ID: 37731318
Once the certificate is installed following the first link then go to the EMS and type


This will list all of the certificates installed and their thumbprint, including the old one no doubt

Then follow the second link to enable the exchange services you want the cert to handle

enable-exchangecertificate (thumbrint) -services (list the services that this cert will be responsible for)
LVL 12

Expert Comment

ID: 37731322
If you want to remove your old certificate then run the

Get-ExchangeCertificate cmd to list out the thumbprints and then use the Remove- command


Author Comment

ID: 37731328
Ah...that's what I was looking for.  Thanks, TN.

Featured Post

Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to effectively resolve the number one email related issue received by helpdesks.
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
Suggested Courses

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question