I am running Exchange Server 2010 (14.01.0438) on Windows Server 2008R2. My Event Viewer has some warnings and errors in it that I was trying to look up. Some of my certificates are expired. No big deal. I have some valid ones, including the 3rd-party one that I use for IIS. So I guess I want to delete the others. My only concern is that one of them says that it has the SMTP Service assigned to it. Another certificate, the self-signed Microsoft Exchange certificate, also has the SMTP role. That self-signed certificate also has the IMAP and POP services, which no other certificates have, but I don't think we actually use anyway. So I have a couple questions:
What is standard practice for assigning Services to certificates? Is it usually the self-signed Exchange certificate for everything except IIS? Or should I try to use my 3rd-party cert for everything?
Do I need to remove the SMTP service from the expired 3rd-party cert before I delete it?I have attached a screenshot from the EMC if that helps. Thanks.