exchange 2007

Our current certificate for exchange outlook web access is about to expire November 13,2013.

i installed a new certificate on oct 15,2013 which is valid till Nov,2015.

i can see it on the outlook web access the certificate says Nov,2015.

But i am getting these logs in the exchange server

Certificate for local system with thumbprint  is about to expire or already expired.

Do i need to check something or worry about something that's missing?.
GlocapAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Simon Butler (Sembee)Connect With a Mentor ConsultantCommented:
Exchange will usually want two certificates present on the system. Your trusted certificate and a self signed certificate.

Run

get-exchangecertificate

That will list the certificates that are present on the system.
Your trusted certificate should be bound to four roles (S, I, W, P).
You may have others bound to just S.

To recreate the self signed certificate for just SMTP (S), run new-exchangecertificate - no switches or other options. You will get a prompt about replacing a certificate - accept it.

You can remove the others with remove-exchangecertificate.

Simon.
0
 
Nick RhodeIT DirectorCommented:
Did you remove the old certificate?
0
 
MarkMichaelCommented:
If you open Exchange Powershell and type:

Get-ExchangeCertificate and check your new certificate is running with the services with the letter W.

If your new certificate is showing the W service, you can remove it from the certificate management MMC.

Once deleted, you will not get any further alerts.
0
Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

 
GlocapAuthor Commented:
i did not remove the old certificate, godaddy told me once you install the new cert it will override the old certificate.
i am ok with the alerts but my main concern is that it should not stop users from accessing outlook web mail.
0
 
MarkMichaelCommented:
That's correct, as long as IIS or the Exchange powershell command is showing a bind to the Exchange Web Service, you are OK.

Adding the new certificate will not 'overwrite' the old certificate as such, but will stay on the server unbound to any services. I would personally remove the old certificate in case it causes some administrative confusion going forward. It's always good to have a clear event log too :)
0
 
Nick RhodeIT DirectorCommented:
With the new cert assigned you should not have any problems :)
0
All Courses

From novice to tech pro — start learning today.