This is using a MS Exchange 2007 server. The SSL issued by GeoTrust was found expired. I have generated the request file (CSR) by using new-exchangecertificate. Now I get the certificate (cer) from GeoTrust. After that, I ran the following command:
import-exchangeCertificate -path c:\geotrust.cer | enable-exchangecertificate -services smtp
Now, when I ran the "get-exchangecertificate", I get the results as follows:
Thumbprint Services Subject
---------- -------- -------
202EF4798C28281D988F30D8E2E92AAE42CDC5E8 ...W. CN=*.abc.com.sg...
3B59D8CBDCB03AF7118B77EFF3B639DAFFEC7A27 ....S CN=VMISINXCH001
6E6412458D74DB8FEBE80AA593143CA6CC90DD6B IP... CN=exchange.com.sg...
722A41089031A922F2CC234055997BF7165493A3 ..... CN=abc Asia, DC=so...
Thumbprint of "202EF..." is the new exchange cert, while "6E64..." is the existing but expired exchange cert. Even I ran
"Enable-exchangeCertificate -thumbprint 202E... -services imap,pop,iis, I can't bind (or move) the services to the now exchange cert, why? Do I have to remove the 606E exchange cert as the "IP" services would still bind with it?
Appreciate for your help.