Solved

exchange 2007

Posted on 2013-11-12
6
209 Views
Last Modified: 2013-11-21
Our current certificate for exchange outlook web access is about to expire November 13,2013.

i installed a new certificate on oct 15,2013 which is valid till Nov,2015.

i can see it on the outlook web access the certificate says Nov,2015.

But i am getting these logs in the exchange server

Certificate for local system with thumbprint  is about to expire or already expired.

Do i need to check something or worry about something that's missing?.
0
Comment
Question by:Glocap
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 22

Expert Comment

by:Nick Rhode
ID: 39641991
Did you remove the old certificate?
0
 
LVL 15

Expert Comment

by:MarkMichael
ID: 39642034
If you open Exchange Powershell and type:

Get-ExchangeCertificate and check your new certificate is running with the services with the letter W.

If your new certificate is showing the W service, you can remove it from the certificate management MMC.

Once deleted, you will not get any further alerts.
0
 

Author Comment

by:Glocap
ID: 39642083
i did not remove the old certificate, godaddy told me once you install the new cert it will override the old certificate.
i am ok with the alerts but my main concern is that it should not stop users from accessing outlook web mail.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
LVL 15

Expert Comment

by:MarkMichael
ID: 39642092
That's correct, as long as IIS or the Exchange powershell command is showing a bind to the Exchange Web Service, you are OK.

Adding the new certificate will not 'overwrite' the old certificate as such, but will stay on the server unbound to any services. I would personally remove the old certificate in case it causes some administrative confusion going forward. It's always good to have a clear event log too :)
0
 
LVL 22

Expert Comment

by:Nick Rhode
ID: 39642096
With the new cert assigned you should not have any problems :)
0
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 39644577
Exchange will usually want two certificates present on the system. Your trusted certificate and a self signed certificate.

Run

get-exchangecertificate

That will list the certificates that are present on the system.
Your trusted certificate should be bound to four roles (S, I, W, P).
You may have others bound to just S.

To recreate the self signed certificate for just SMTP (S), run new-exchangecertificate - no switches or other options. You will get a prompt about replacing a certificate - accept it.

You can remove the others with remove-exchangecertificate.

Simon.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
In-place Upgrading Dirsync to Azure AD Connect
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
Suggested Courses
Course of the Month11 days, 17 hours left to enroll

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question