Solved

Exchange 2010 Cert Renewal

Posted on 2012-03-23
8
571 Views
Last Modified: 2012-08-13
Hi,

My exchange cert is about to expire and I need to renew it.  In order to renew it I need to generate a new cert request using this method here correct? http://technet.microsoft.com/en-us/library/ee332322.aspx

The original cert request that we used to get the first/original license won't work correct?
0
Comment
Question by:Treadstone21
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 37757461
You don't need to create a new request - just renew with your cert provider and download the cert, then install the cert, repair the certificate store to add the private key and then enable the certificate.
0
 

Author Comment

by:Treadstone21
ID: 37758825
Ok, I have an issue where I have 4 servers.  Server1 has the HT and Mailbox role installed. Server2 with the HT role only, and Server3 and Server4 with the CAS role each and in the CAS array.

Now Server1, the server in question has the expiring cert.  So If I remove the SSL cert and uninstall the HT roll, will transport services automatically fail over to Server2?  Or can I remove the SSL cert and keep the HT installed for internal mailflow (using the self assigned cert)?
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 37759030
You don't need to remove a certificate to renew it.  Leave the existing one alone, renew it and then download / install the renewed certificate.
0
Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 

Author Comment

by:Treadstone21
ID: 37759356
It expires tomorrow and I don't have time to renew it.  I removed the CAS role earlier this month. So I think we should be ok if I remove the expiring ssl cert right? and leave the self assigned on.
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 37759456
Self-signed certs won't work unless Exchange has been messed about with.

If you remove the cert - you will stop things that rely on it.

Renewing the cert takes minutes - you just need to renew it.  You won't have to go through the process of requesting it and waiting for approval - you just need to pay and renew, then download, import, repair the private key and enable - it is that simple.
0
 

Author Comment

by:Treadstone21
ID: 37759483
Thanks for your assistance/paitence.   So your saying the self assign won't work for internal mail flow only?
0
 
LVL 76

Accepted Solution

by:
Alan Hardisty earned 500 total points
ID: 37759490
It won't be a problem for internal mail-flow - but don't delete the old cert - there is no need.

Just renew the current cert asap and if you need help importing, adding the private key and enabling it, let me know.
0
 

Author Closing Comment

by:Treadstone21
ID: 38179378
Internal mailflow worked fine
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
how to add IIS SMTP to handle application/Scanner relays into office 365.

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question