Kapil_Mistry
asked on
Exchange 2003 - How to renew self signed certificate in advance
Hi All,
The self signed certificate used for Outlook anywhere and OWA is due to expire shortly. We are running Windows Server 2003 with Exchange 2003. What is the best way/how to renew the certificate in preparation for the expiry date
Many thanks
Kapil
The self signed certificate used for Outlook anywhere and OWA is due to expire shortly. We are running Windows Server 2003 with Exchange 2003. What is the best way/how to renew the certificate in preparation for the expiry date
Many thanks
Kapil
ASKER
Is there more to it after the wizard. Do i then need to go to http://servername/certsrv ?
Would you know of any step by step instructions? Thanks
Would you know of any step by step instructions? Thanks
Assuming that it is issued by an internal CA :
With same key :
http://technet.microsoft.com/en-us/library/cc758448.aspx
With a different key :
http://technet.microsoft.com/en-us/library/cc727980.aspx
With same key :
http://technet.microsoft.com/en-us/library/cc758448.aspx
With a different key :
http://technet.microsoft.com/en-us/library/cc727980.aspx
ASKER
If you don't mind me confirming:
1. Look at the instructions specific to "Manage certificates for a service"?
2. Once renewed would i need to install the new cert on the devices or will the same one apply, by renewing will it break the existing cert?
thanks
1. Look at the instructions specific to "Manage certificates for a service"?
2. Once renewed would i need to install the new cert on the devices or will the same one apply, by renewing will it break the existing cert?
thanks
Renewing a certificate with the same key provides maximum compatibility with past uses of the accompanying key pair, but it does not enhance the security of the certificate and key pair.
So after you renew the cert with same key, there should be no need of installing it again on all devices.
So after you renew the cert with same key, there should be no need of installing it again on all devices.
ASKER
Thanks, i'll give it a go
ASKER
Hi,
I've had issues with this. The renew option didnt work, had to remove the current expired certificate then create a request for a new one. Worked out okay in the end, OWA up and running, only issue is that it has screwed up Outlook Anywhere, doesn't seem to work anymore. I assumed that as the certificate was applied to the default website in IIS it would also apply to the subsite rpc etc....
Any thoughts?
I've had issues with this. The renew option didnt work, had to remove the current expired certificate then create a request for a new one. Worked out okay in the end, OWA up and running, only issue is that it has screwed up Outlook Anywhere, doesn't seem to work anymore. I assumed that as the certificate was applied to the default website in IIS it would also apply to the subsite rpc etc....
Any thoughts?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Go to Inetmgr --default web site -- properties -- directory security -- server certificate --next -- renew certificate option.