I am using the default self-signed certificate that was created by the server but I have noticed that in the EMC it shows 5 entirely different certificates that I feel is not correct. My goal is to remove all the self-signed certificates from Exchange 2010 and the SBS 2011 server and create a 3rd party certificate, most likely through GoDaddy. I am using Outlook Web Access and Remote Web Access for remote connectivity.
This particular issue came up because I received a warning on my SBS server that an Exchange certificate was going to expire soon. When viewing the certificates in the EMC I noticed that 5 were listed and only two were self signed even though I have never purchased a certificate through a CA. The certificate that is expiring has the Subject: CN=servername.office.domai
n.com with the SMTP service assigned. The odd part is that two other certificates already have the SMTP services assigned, one with the subject CN=office.domain.com and the other cert subject is CN=Sites. I am questioning if the cert that is expiring with subject CN=servername.office.domai
n.com is even needed since the other cert already has the IMAP, Pop, IIS and SMTP service already assigned.
Here is a snapshot of the certificates to show what I am referring to:
The one highlighted in red is the cert that is expiring. Basically my main concern at the moment is trying to figure out why I have 5 different certificates on my Exchange and whether or not it is normal to have that many when I am doing nothing abstract with my environment other than the typical Outlook Web Access, Remote Web Access, ActiveSync, etc setup.
Any help is appreciated.