Solved

How to renew an expired SMTP certificate for Exchange Server 2007 SP2?

Posted on 2012-04-04
5
138 Views
Last Modified: 2012-04-09
Dear Experts,

I have an exchange expired certificate and I got an error message from the Application log of theEvent Viewer informing that "There is no valid SMTP Transport Layer Security (TLS) certificate... ". The event source is "MSExchangeTransport", th event category is "TransportService " and the event ID is "12016".

I have searched about it on Mycrosoft Help and Support Center but it drives me to Exchange 2010 page.

Many thanks for the help,

ExhAdmin.
0
Comment
Question by:lhiadmin
  • 4
5 Comments
 
LVL 7

Accepted Solution

by:
doertalk earned 500 total points
ID: 37811677
Is it a third party cerificate or Self signed..
use the below command in exchange management shell to check the same,
>get-ExchangeCertificate | fl
This gives the list of cerificates available,then check for the certificate which has expired.there u can find whether it is selfsigned or not.

If its a third party then contact the relavent vendor.If its self signed the we can renew using the below command..
Enable-ExchangeCertificate ..

Remember to remove the old certificate once the new one is created successfully.

Check this link to renew the self-signed certificate,

http://exchangepedia.com/2008/01/exchange-server-2007-renewing-the-self-signed-certificate.html
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37811700
When you run the command, get-exchangecertificate | fl  ,
It will give you a list of all the certificates in your organization.

Example,

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System
                     .Security.AccessControl.CryptoKeyAccessRule, System.Securi
                     ty.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {Sites, ABCS.BAC.local}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=ABCS-BAC.CA
NotAfter           : 12/1/2011 1:57:53 PM
NotBefore          : 12/1/2009 1:57:53 PM
PublicKeySize      : 2048
RootCAType         : Registry
SerialNumber       : 611DA746000000000002
Services           : IMAP, POP, SMTP
Status             : Valid
Subject            : CN=Sites
Thumbprint         : 3B247F90803C53FF6D84DC562CBC5CC9777FFFE0
---------------------------------------------------------------------------------------------------------------------

here you check for ,
IsSelfSigned       : False  (False=3rd party, True=Selfsigned)
Issuer             : Issuer Name (If its a 3rd party then there name will be present here and you can contact them to renew the certificate from their end)

Hope its clear...

Cheers,...
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37811718
Note : lhiadmin, you are looking for the answer in the wrong place.
Please select the appropriate topic so that you will be guided with quick response.

As this is an exchange related question.we can select Exchange as the topic instead of Miscellaneous.

Have a great time..
0
 

Author Closing Comment

by:lhiadmin
ID: 37823438
Also a very good content on the link. I was able to find complementar information searching on the site libery. See the link below:

http://exchangetimes.wordpress.com/2010/12/28/renewing-tls-certificate-on-a-hub-transport-server/
0
 
LVL 7

Expert Comment

by:doertalk
ID: 37823783
thats really good.

Thank You.
0

Featured Post

Live: Real-Time Solutions, Start Here

Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Need more details 5 148
Looking to replace current projector currently using a 4:3 screen 2 50
Any consequences with two systems powered 24/7 11 52
Problem to file 13 39
Since 2008, the stock markets have been in a haphazard state of fluctuation. At times it has been a steep decline (2008) and at others, a steady incline full of promise (2010). Just weeks ago, in August 2011, together we saw the stock markets plunge…
Finding a job can be stressful - searches, resume tweaks, and networking events can be super boring. Luckily we're here to help you land your dream job!
The Bounty Board allows you to request an article or video on any technical topic, or fulfill a bounty request to earn points. Watch this video to learn how to use the Bounty Board to get the content you want, earn points, and browse submitted bount…
Articles on a wide range of technology and professional topics are available on Experts Exchange. These resources are written by members, for members, and can be written about any topic you feel passionate about. Learn how to best write an article t…

774 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question