Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Remove assigned POP and IMAP from Exchange 2013 Certificate

Posted on 2014-10-15
3
Medium Priority
?
707 Views
Last Modified: 2015-02-10
Hello Experts,
I am new to certificate creation editing and management, and I recently added services to our exchange certificate which ended up breaking emails. A friend fixed the smpt & IIS side and was able to remove the IIS and SMTP services from the certificate, but the IMAP and POP services remain.
I tried:
Disabling the services on a Certificate without removing it,
Enable-ExchangeCertificate -Thumbprint 0000000000000000000000000000000000000 -Services 'None'
This did not work.
To fix this from my readings on the web, I think I will need to recreate the self signed certificate and move the POP and IMAP services to them?  will this work, do I have to do this when. We are running Exchange server 2013 (on Server 2012R2), with the transporter located on an SBS 2008 running Exchange 2007
0
Comment
Question by:Hec C
  • 2
3 Comments
 
LVL 12

Accepted Solution

by:
Md. Mojahid earned 1500 total points
ID: 40383623
Following info applies to your case:
Source: http://technet.microsoft.com/en-us/library/aa997231.aspx

"The Enable-ExchangeCertificate cmdlet is additive. When you specify a subset of services for which a certificate is enabled, the services that aren't specified aren't removed from the Services property. If you don't want to use an existing enabled certificate for Exchange services, you must enable another certificate, and then remove the certificate you don't want to use."

So you would enable the certificate for services that are required from the Exchange Mgmt Shell. For example:
Enable-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e -Services POP,IMAP,SMTP,IIS

Then remove the certificate that was associated with the services that are not required. For example:
(most likely the same certificate as in the previous example, your thumbprint will be different)
Remove-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e

That should do it. Might need to restart IIS:
iisreset /noforce
0
 

Author Comment

by:Hec C
ID: 40602019
I deleted the certificate then recreated a self signed one, this removed all the services associated to it, which was what I was after. Thanks for your assistance.
0
 

Author Closing Comment

by:Hec C
ID: 40602025
Simply deleting then creating a new self signed certificated solved this particular issue.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The core idea of this article is to make you acquainted with the best way in which you can export Exchange mailbox to PST format.
Are you looking for the options available for exporting EDB files to PST? You may be confused as they are different in different Exchange versions. Here, I will discuss some options available.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question