Solved

Certificate in Exchange 2010

Posted on 2014-12-17
7
82 Views
Last Modified: 2014-12-21
We have setup two exchange EX01 & EX02 running in DAG, using the named exdag. There are two certificates on our Exchange

exdag.abc.com.hk  (issued by exdag)
mail.abc.com.hk  (Issued by VeriSign)


The exdag is going to be expired. Any idea how to regenerate it ? Is it created by default when creating the DAG group in exchange ?

Tks
0
Comment
Question by:AXISHK
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 25

Expert Comment

by:-MAS
ID: 40506420
Here is the article from Technet to renew
http://technet.microsoft.com/en-us/library/ee332322(v=exchg.141).aspx

You can use this for easy CSR command generation
http://gallery.technet.microsoft.com/Exchange-20072010-and-2013-17a0b52f
0
 

Author Comment

by:AXISHK
ID: 40506429
Tks. The link show how to generate the CSR. However, I have review the server and it is issued by EXDAG. It mean that it is generated through some way...

Tks
0
 
LVL 12

Assisted Solution

by:SreRaj
SreRaj earned 100 total points
ID: 40506431
Hi,

If this is a self-signed certificate, you could re-issue it by using the PowerShell cmdlet New-ExchangeCertificate

Complete command would be

Get- ExchangeCertificate -Thumbprint 'AD19B141228C7CF98B5F78DCED978B7C45E15434' | New-ExchangeCertificate

Here, thumbprint is that of the certificate which is going to expire. This will only work for self-signed certificate.

When you list details of the certificates with the following command, there is an attribute 'IsSelfSigned', if this is set as True, then the certificate is self-signed.

 Get- ExchangeCertificate | FL
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 
LVL 25

Assisted Solution

by:-MAS
-MAS earned 100 total points
ID: 40506458
Here is the command as in the article I posted
Get- ExchangeCertificate -Thumbprint 'AD19B141228C7CF98B5F78DCED978B7C45E15434' | New-ExchangeCertificate

Open in new window


This command will show you the thumbprint of the self signed certificate
Get-ExchangeCertificate | fl Thumbprint,IsSelfSigned

Open in new window

0
 

Author Comment

by:AXISHK
ID: 40506461
Get- ExchangeCertificate -Thumbprint 'AD19B141228C7CF98B5F78DCED978B7C45E15434' | New-ExchangeCertificate

Does this keep everything the same, but extending the expiry period ? Do I need to rebind it afterwards ?

Tks
0
 
LVL 12

Expert Comment

by:SreRaj
ID: 40506467
Yes, New-ExchangeCertificate overwrites existing certificate. So everything remains same, no further configuration required.
0
 
LVL 20

Accepted Solution

by:
Satya Pathak earned 300 total points
ID: 40506539
try  below KB this will help you to understand how to renew the certificate on Exchange 2010 .

http://exchangepedia.com/2008/01/exchange-server-2007-renewing-the-self-signed-certificate.html
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question