Solved

Exchange 2010 and GoDaddy SSL Certificate renewal

Posted on 2014-03-17
12
3,439 Views
Last Modified: 2014-03-18
My Exchange SSL cert will expire tommorow morning. When I go to create a new cert and select what to use. I only get POP and IMAP. No SMTP or IIS. The current "SSL Cert has those defined. WHen setting up the SSL thru GoDaddy I did not select "Trust Federation" Where do I select IIS and SMTP
0
Comment
Question by:donebert
12 Comments
 
LVL 1

Author Comment

by:donebert
ID: 39934150
Here is the screen shot and explanation
Current-SSL-Certificate.docx
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39934162
If you are doing the renewal, just skip through the steps, putting as little information in as the wizard requires. It has no bearing on the end result. When you get to the end you can then adjust the host names that you need - that is important as the wizard puts in the root of the domain as the common name, but most people have host.example.com as the common name.

Then complete the wizard as normal and put it in to the GoDaddy system.
When you get it back, install the new intermediate certificate (it changed earlier this year) and then complete the request. You can then enable the services in the usual way.

Simon.
0
 
LVL 1

Author Comment

by:donebert
ID: 39934886
Question?  My certificate will expire tommorow. Can I re-new it and if for some reason something screwed up does it remove my current one?
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39935207
A renewal will leave the existing certificate in place.

Simon.
0
 
LVL 1

Author Comment

by:donebert
ID: 39935365
It did.. I appreciate your quick responses. The only issue I had was not having the SMTP and IIS added. There was a PowerShell Script  ran that added those. I'm thinking now that I added it and everything still working I'm good to go. It now does list both certs with same name and 1 showing it is expiring tomorrow and the other the following year. Also the IIS was removed from current(soon to expire) cert and on the new one. All is working. I will add to this tomorrow when it officially expires
0
 
LVL 1

Author Comment

by:donebert
ID: 39935905
on March 18th 9:22am the current cert will expire. In the even log viewer I see (((((EVENT ID 12014 could not find a certificate that contains the domain name in the personal store on local computer))) from seeing this event I noticed that the personal cert is showing twice for the same name.

Not sure if I have to remove the cert about to expire to have it keep working.The other cert is there as well. Should I remove the old cert from exchange management console and verify it is removed from the certificate on local computer b/c of being in twice>>?Will my system stop sending/receiving emails? not sure what to excpect any help would be greatly appreciated.!!!

Thanks
0
Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

 
LVL 10

Assisted Solution

by:Vijaya Babu Sekar
Vijaya Babu Sekar earned 200 total points
ID: 39936040
First, you would need to create the CSR file, then upload the information to GoDaddy.com and create the certificate, then you can import the certificate to Exchange server and enable the certificate. While enabling certificate you can assign the service like below.

Enable-ExchangeCertificate -Server <ExchangeServerName> -Services 'IMAP, POP, IIS, SMTP' -Thumbprint 'EDF57B5F9D81F1EC329BFB77ADD4465B426A40FB'

Based on the Thumbprint you can enable your new certificate. Thanks.
0
 
LVL 12

Accepted Solution

by:
Md. Mojahid earned 300 total points
ID: 39936261
You have to only create new sll certificate request from EMC and then genrate new sll certificate from GoDaddy and install new certificate on exchange after successfully install certificate your have to remove old certificate from exchange.

For more

http://stevehardie.com/2013/10/how-to-renew-a-godaddy-exchange-2010-ssl-certificate/
0
 
LVL 1

Author Comment

by:donebert
ID: 39936630
Do I have to wait until old cert expires before deleting it? Should I do it ahead of time not sure if it will stop my email server from working until that time comes>?
0
 
LVL 1

Author Comment

by:donebert
ID: 39936983
Update, I went ahead and removed the old SSL cert 10  minutes before and everything is still working normally. Thanks for your help
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 39937784
For future reference, if you have an existing certificate on GoDaddy and do a renewal, then they will start the certificate from the point of request to the end date, plus the number of years bought.

So if you had a certificate that expired on June 1st, but did the renewal of a three year certificate on 10th May, then the new certificate would start on the 10th of May and expire on the June 1st in three years time. There is no need to wait until close to the expiry of the old certificate.

Simon.
0
 
LVL 1

Author Closing Comment

by:donebert
ID: 39937863
Thanks for everything all is working just like before
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Local Continuous Replication is a cost effective and quick way of backing up Exchange server data. The following article describes the steps required to configure Local Continuous Replication. Also, the article tells you how to restore from a backup…
This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
This video discusses moving either the default database or any database to a new volume.

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now