EXCHANGE SSL certificate

Dear all,

We had bought a SSL certificate from go daddy and installed it on our exchange 2007 server.

it is about to expire on oct 12,2013.  we have setup auto renewal of the certificate in go daddy.

Do i need to buy a new certificate and install it or the previous certificate will be good enough provided we pay go daddy to renew the cert for 3 more years?
Who is Participating?
AmitConnect With a Mentor IT ArchitectCommented:
Ya Simon you were right don't need to remove. Thanks for clarifying.
Nick RhodeIT DirectorCommented:
You would just run the renewal on the exchange server for that will expire also.
AmitIT ArchitectCommented:
You need to first create a new CSR, send it to Godaddy, get the cert, remove old cert, import new cert, assign services you are done. Follow steps here
Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

go daddy support people are usually very good at walking you through the whole process as well as your options.  If you do not already have SAN certificate, you may want to consider that to address the growing needs of SSL and for when you upgrade to 2010/2013.

You will need to go through the process to renew and update the certificate on the server.  It is an easy process.

If your local network domain is xxx.local as many have done in the past, you will also have to address how to handle that, since no CAs will issue .local certs that go past 2015.  go daddy support can explain that in detail as well.
Simon Butler (Sembee)ConsultantCommented:
"get the cert, remove old cert, import new cert"

I don't agree there. You can install the new certificate without removing the old. That way there is no downtime.

So new CSR (you cannot use the old one), put in the GoDaddy system, download replacement, complete the request. Then activate services and remove the old certificate. You will not need to install the interemediate certificate again.

GlocapAuthor Commented:
is this renewal process seamless or does it affect end users with emails configured on cell phones.
Simon Butler (Sembee)ConsultantCommented:
AS long as the same common name is used on the new certificate as the old one, the only downtime is when you run IISRESET for the new certificate to apply. The users don't notice a thing.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.