Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

What are the default SBS 2011/Exchange 2010 certificates?

Posted on 2014-02-17
4
Medium Priority
?
531 Views
Last Modified: 2014-02-26
Hello,

I am using the default self-signed certificate that was created by the server but I have noticed that in the EMC it shows 5 entirely different certificates that I feel is not correct.  My goal is to remove all the self-signed certificates from Exchange 2010 and the SBS 2011 server and create a 3rd party certificate, most likely through GoDaddy.  I am using Outlook Web Access and Remote Web Access for remote connectivity.

This particular issue came up because I received a warning on my SBS server that an Exchange certificate was going to expire soon.  When viewing the certificates in the EMC I noticed that 5 were listed and only two were self signed even though I have never purchased a certificate through a CA.  The certificate that is expiring has the Subject: CN=servername.office.domain.com with the SMTP service assigned.  The odd part is that two other certificates already have the SMTP services assigned, one with the subject CN=office.domain.com and the other cert subject is CN=Sites.  I am questioning if the cert that is expiring with subject CN=servername.office.domain.com is even needed since the other cert already has the IMAP, Pop, IIS and SMTP service already assigned.

Here is a snapshot of the certificates to show what I am referring to:

exchange certificates

The one highlighted in red is the cert that is expiring.  Basically my main concern at the moment is trying to figure out why I have 5 different certificates on my Exchange and whether or not it is normal to have that many when I am doing nothing abstract with my environment other than the typical Outlook Web Access, Remote Web Access, ActiveSync, etc setup.  

Any help is appreciated.  

Thank you
0
Comment
Question by:ColumbiaMarketing
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39866185
The top two aren't self-signed. Look in the SBS Console instead of the EMC and go to the Network Tab > connectivity and double-click the Certificate icon.

This will bring up the properties of the currently installed certificate.

Jeff
0
 

Accepted Solution

by:
ColumbiaMarketing earned 0 total points
ID: 39877026
Thank you for the insight.  I have recently resolved this by confirming that the certificate in question is safe to let expire.
0
 

Author Closing Comment

by:ColumbiaMarketing
ID: 39888283
I resolved this myself by contacting a Microsoft rep.
0
 
LVL 74

Expert Comment

by:Jeffrey Kane - TechSoEasy
ID: 39889732
Funny, I just posted that on another question -- as I looked at a couple of SBS 2008's that I manage and saw that the cert was expired with no resulting issue.

:-)
0

Featured Post

Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
Know the reasons and solutions to move/import EDB to New Exchange Server. Also, find out how to recover an Exchange .edb file and to restore the file back.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

610 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question