Solved

How to renew an expired SMTP certificate for Exchange Server 2007 SP2?

Posted on 2012-04-04
5
140 Views
Last Modified: 2012-04-09
Dear Experts,

I have an exchange expired certificate and I got an error message from the Application log of theEvent Viewer informing that "There is no valid SMTP Transport Layer Security (TLS) certificate... ". The event source is "MSExchangeTransport", th event category is "TransportService " and the event ID is "12016".

I have searched about it on Mycrosoft Help and Support Center but it drives me to Exchange 2010 page.

Many thanks for the help,

ExhAdmin.
0
Comment
Question by:lhiadmin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 7

Accepted Solution

by:
doertalk earned 500 total points
ID: 37811677
Is it a third party cerificate or Self signed..
use the below command in exchange management shell to check the same,
>get-ExchangeCertificate | fl
This gives the list of cerificates available,then check for the certificate which has expired.there u can find whether it is selfsigned or not.

If its a third party then contact the relavent vendor.If its self signed the we can renew using the below command..
Enable-ExchangeCertificate ..

Remember to remove the old certificate once the new one is created successfully.

Check this link to renew the self-signed certificate,

http://exchangepedia.com/2008/01/exchange-server-2007-renewing-the-self-signed-certificate.html
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37811700
When you run the command, get-exchangecertificate | fl  ,
It will give you a list of all the certificates in your organization.

Example,

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System
                     .Security.AccessControl.CryptoKeyAccessRule, System.Securi
                     ty.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {Sites, ABCS.BAC.local}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=ABCS-BAC.CA
NotAfter           : 12/1/2011 1:57:53 PM
NotBefore          : 12/1/2009 1:57:53 PM
PublicKeySize      : 2048
RootCAType         : Registry
SerialNumber       : 611DA746000000000002
Services           : IMAP, POP, SMTP
Status             : Valid
Subject            : CN=Sites
Thumbprint         : 3B247F90803C53FF6D84DC562CBC5CC9777FFFE0
---------------------------------------------------------------------------------------------------------------------

here you check for ,
IsSelfSigned       : False  (False=3rd party, True=Selfsigned)
Issuer             : Issuer Name (If its a 3rd party then there name will be present here and you can contact them to renew the certificate from their end)

Hope its clear...

Cheers,...
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37811718
Note : lhiadmin, you are looking for the answer in the wrong place.
Please select the appropriate topic so that you will be guided with quick response.

As this is an exchange related question.we can select Exchange as the topic instead of Miscellaneous.

Have a great time..
0
 

Author Closing Comment

by:lhiadmin
ID: 37823438
Also a very good content on the link. I was able to find complementar information searching on the site libery. See the link below:

http://exchangetimes.wordpress.com/2010/12/28/renewing-tls-certificate-on-a-hub-transport-server/
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37823783
thats really good.

Thank You.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Problem to refer to value 8 98
List out file 4 47
Using Certified Teacher K-12 in North Carolina in NY and IN 1 31
2015 RAM HEMI 1500 5.7 L V8 5 29
CSS is a visual language used to classify objects and define rules about how they should be displayed. CSS skills aren’t restricted to developers anymore, there is a big benefit to having a basic understanding of the language, regardless of your occ…
One of the biggest challenges facing freelancers is balancing multiple projects and deadlines. Organizational skills and time management are key to keeping up with projects and staying on track. Luckily, we’ve curated seven tools to help you focus o…
The Bounty Board allows you to request an article or video on any technical topic, or fulfill a bounty request to earn points. Watch this video to learn how to use the Bounty Board to get the content you want, earn points, and browse submitted bount…
Where to go on the main page to find the job listings. How to apply to a job that you are interested in from the list that is featured on our Careers page.

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question