Exchange 2010 Cert Renewal

Hi,

My exchange cert is about to expire and I need to renew it.  In order to renew it I need to generate a new cert request using this method here correct? http://technet.microsoft.com/en-us/library/ee332322.aspx

The original cert request that we used to get the first/original license won't work correct?
Treadstone21Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Alan HardistyCo-OwnerCommented:
You don't need to create a new request - just renew with your cert provider and download the cert, then install the cert, repair the certificate store to add the private key and then enable the certificate.
0
Treadstone21Author Commented:
Ok, I have an issue where I have 4 servers.  Server1 has the HT and Mailbox role installed. Server2 with the HT role only, and Server3 and Server4 with the CAS role each and in the CAS array.

Now Server1, the server in question has the expiring cert.  So If I remove the SSL cert and uninstall the HT roll, will transport services automatically fail over to Server2?  Or can I remove the SSL cert and keep the HT installed for internal mailflow (using the self assigned cert)?
0
Alan HardistyCo-OwnerCommented:
You don't need to remove a certificate to renew it.  Leave the existing one alone, renew it and then download / install the renewed certificate.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Treadstone21Author Commented:
It expires tomorrow and I don't have time to renew it.  I removed the CAS role earlier this month. So I think we should be ok if I remove the expiring ssl cert right? and leave the self assigned on.
0
Alan HardistyCo-OwnerCommented:
Self-signed certs won't work unless Exchange has been messed about with.

If you remove the cert - you will stop things that rely on it.

Renewing the cert takes minutes - you just need to renew it.  You won't have to go through the process of requesting it and waiting for approval - you just need to pay and renew, then download, import, repair the private key and enable - it is that simple.
0
Treadstone21Author Commented:
Thanks for your assistance/paitence.   So your saying the self assign won't work for internal mail flow only?
0
Alan HardistyCo-OwnerCommented:
It won't be a problem for internal mail-flow - but don't delete the old cert - there is no need.

Just renew the current cert asap and if you need help importing, adding the private key and enabling it, let me know.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Treadstone21Author Commented:
Internal mailflow worked fine
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.