What are the default SBS 2011/Exchange 2010 certificates?

Hello,

I am using the default self-signed certificate that was created by the server but I have noticed that in the EMC it shows 5 entirely different certificates that I feel is not correct.  My goal is to remove all the self-signed certificates from Exchange 2010 and the SBS 2011 server and create a 3rd party certificate, most likely through GoDaddy.  I am using Outlook Web Access and Remote Web Access for remote connectivity.

This particular issue came up because I received a warning on my SBS server that an Exchange certificate was going to expire soon.  When viewing the certificates in the EMC I noticed that 5 were listed and only two were self signed even though I have never purchased a certificate through a CA.  The certificate that is expiring has the Subject: CN=servername.office.domain.com with the SMTP service assigned.  The odd part is that two other certificates already have the SMTP services assigned, one with the subject CN=office.domain.com and the other cert subject is CN=Sites.  I am questioning if the cert that is expiring with subject CN=servername.office.domain.com is even needed since the other cert already has the IMAP, Pop, IIS and SMTP service already assigned.

Here is a snapshot of the certificates to show what I am referring to:

exchange certificates

The one highlighted in red is the cert that is expiring.  Basically my main concern at the moment is trying to figure out why I have 5 different certificates on my Exchange and whether or not it is normal to have that many when I am doing nothing abstract with my environment other than the typical Outlook Web Access, Remote Web Access, ActiveSync, etc setup.  

Any help is appreciated.  

Thank you
ColumbiaMarketingAsked:
Who is Participating?
 
ColumbiaMarketingConnect With a Mentor Author Commented:
Thank you for the insight.  I have recently resolved this by confirming that the certificate in question is safe to let expire.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
The top two aren't self-signed. Look in the SBS Console instead of the EMC and go to the Network Tab > connectivity and double-click the Certificate icon.

This will bring up the properties of the currently installed certificate.

Jeff
0
 
ColumbiaMarketingAuthor Commented:
I resolved this myself by contacting a Microsoft rep.
0
 
Jeffrey Kane - TechSoEasyPrincipal ConsultantCommented:
Funny, I just posted that on another question -- as I looked at a couple of SBS 2008's that I manage and saw that the cert was expired with no resulting issue.

:-)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.