We have single sbs2011 server running exchange. I noticed yesterday that on of our locally issued certifficates was due to expire.
The one in question was :- servername.domainname.local issued by domainname-servername-CA.
I right clicked the certifficate and chose renew. It seemd to process OK and now says that it is valid.
Today I came in and the server is reporting - "An internal transport certificate expired. Thumbprint:A10260BE011C3FA3CCFF16356294FDD76EBFB00F"
There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of Servername.domainname.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of servername.dmainname.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.
In our event log.
I can see the actual certifficate in question on both the IIS manager and the EMC, and it is reported as having expired.
I have tried to renew this locally by right clicking the certifficate and choosing renew, but unlike yesterday, I am told that it is being submitted to an online authority but was denied.
I am a little confused here, as we already have an SSL in place for our owa access etc ie remote.domainname.co.uk and am unsure about why this locally held certifficate is not being renewed locally??
What am I doing wrong?
Any advice much appreciated.