Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

How to renew an expired SMTP certificate for Exchange Server 2007 SP2?

Posted on 2012-04-04
5
Medium Priority
?
143 Views
Last Modified: 2012-04-09
Dear Experts,

I have an exchange expired certificate and I got an error message from the Application log of theEvent Viewer informing that "There is no valid SMTP Transport Layer Security (TLS) certificate... ". The event source is "MSExchangeTransport", th event category is "TransportService " and the event ID is "12016".

I have searched about it on Mycrosoft Help and Support Center but it drives me to Exchange 2010 page.

Many thanks for the help,

ExhAdmin.
0
Comment
Question by:lhiadmin
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 7

Accepted Solution

by:
SriHarsha K earned 2000 total points
ID: 37811677
Is it a third party cerificate or Self signed..
use the below command in exchange management shell to check the same,
>get-ExchangeCertificate | fl
This gives the list of cerificates available,then check for the certificate which has expired.there u can find whether it is selfsigned or not.

If its a third party then contact the relavent vendor.If its self signed the we can renew using the below command..
Enable-ExchangeCertificate ..

Remember to remove the old certificate once the new one is created successfully.

Check this link to renew the self-signed certificate,

http://exchangepedia.com/2008/01/exchange-server-2007-renewing-the-self-signed-certificate.html
0
 
LVL 7

Expert Comment

by:SriHarsha K
ID: 37811700
When you run the command, get-exchangecertificate | fl  ,
It will give you a list of all the certificates in your organization.

Example,

AccessRules        : {System.Security.AccessControl.CryptoKeyAccessRule, System
                     .Security.AccessControl.CryptoKeyAccessRule, System.Securi
                     ty.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {Sites, ABCS.BAC.local}
HasPrivateKey      : True
IsSelfSigned       : False
Issuer             : CN=ABCS-BAC.CA
NotAfter           : 12/1/2011 1:57:53 PM
NotBefore          : 12/1/2009 1:57:53 PM
PublicKeySize      : 2048
RootCAType         : Registry
SerialNumber       : 611DA746000000000002
Services           : IMAP, POP, SMTP
Status             : Valid
Subject            : CN=Sites
Thumbprint         : 3B247F90803C53FF6D84DC562CBC5CC9777FFFE0
---------------------------------------------------------------------------------------------------------------------

here you check for ,
IsSelfSigned       : False  (False=3rd party, True=Selfsigned)
Issuer             : Issuer Name (If its a 3rd party then there name will be present here and you can contact them to renew the certificate from their end)

Hope its clear...

Cheers,...
0
 
LVL 7

Expert Comment

by:SriHarsha K
ID: 37811718
Note : lhiadmin, you are looking for the answer in the wrong place.
Please select the appropriate topic so that you will be guided with quick response.

As this is an exchange related question.we can select Exchange as the topic instead of Miscellaneous.

Have a great time..
0
 

Author Closing Comment

by:lhiadmin
ID: 37823438
Also a very good content on the link. I was able to find complementar information searching on the site libery. See the link below:

http://exchangetimes.wordpress.com/2010/12/28/renewing-tls-certificate-on-a-hub-transport-server/
0
 
LVL 7

Expert Comment

by:SriHarsha K
ID: 37823783
thats really good.

Thank You.
0

Featured Post

[Webinar] Lessons on Recovering from Petya

Skyport is working hard to help customers recover from recent attacks, like the Petya worm. This work has brought to light some important lessons. New malware attacks like this can take down your entire environment. Learn from others mistakes on how to prevent Petya like worms.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Whether you believe the “gig economy,” as it has been dubbed, is the next big economic paradigm shift (https://www.theguardian.com/commentisfree/2015/jul/26/will-we-get-by-gig-economy) or an overstated trend (http://www.wsj.com/articles/proof-of-a-g…
With the shift in today’s hiring climate (http://blog.experts-exchange.com/ee-blog/5-tips-on-succeeding-in-the-new-gig-economy/?cid=Blog_031816), many companies are choosing to hire freelancers to get projects completed efficiently and inexpensively…
Notifications on Experts Exchange help you keep track of your activity and updates in one place. Watch this video to learn how to use them on the site to quickly access the content that matters to you.
Articles on a wide range of technology and professional topics are available on Experts Exchange. These resources are written by members, for members, and can be written about any topic you feel passionate about. Learn how to best write an article t…

661 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question