Exchange 2010 Certificate Expired

My exchange 2010 certificate expired.  All of my clients show an error that the certificate expired.  I tired to create a new certificate in exchange but I am not having any luck.  I want to use the Microsoft Certificate Authority on the server to generate the certificate.  Can some please help me with this?  I can't get it to work  I am not that familiar with certificates in Exchange so I am a little confused.  I am running Exchange on Microsoft SBS 2011.
tammieRAsked:
Who is Participating?
 
cpmcomputersCommented:
As stated above in sbs this is all handled by the wizards in the small business console

For peace of mind

You can still  Run the "fix my network" option  in the sbs console
 It will identify and fix any outstanding certificate errors and create one if needed

 If it does so Then you need to use "the add trusted certificate " wizard
 Select use existing certificate on this server option
 You should get a list of certificates with their expiry dates

 Select the newly generated one
 And you should be good

 If it finds nothing you should not have a problem
0
 
MAS (MVE)Technical Department HeadCommented:
If you are renewing self signed certificate please run the below command
Get-ExchangeCertificate <thumbprint> | New-ExchangeCertificate | Enable-ExchangeCertificate -services pop,imap,smtp,iis

Open in new window

Please find below a similar thread
http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28203703.html
0
 
tammieRAuthor Commented:
I have deleted the old certificate from the Exchange Server.  The Outlook client is showing a cert that doesn't show up one the certificates in Exchange.  I am confused on where it is coming from.  Do you know how I can get the Outlook client to stop looking at an old certificate?
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
MAS (MVE)Technical Department HeadCommented:
You can see the details of the certificate by the below command.
Get-ExchangeCertificate | fl IsSelfSigned,CertificateDomains,Thumbprint,NotAfter,Services,Issuer

Open in new window


Delete the expired certificate by the below command.
Remove-ExchangeCertificate -Thumbprint 2C76394C88873A026740B35F2326DEACDF950377

Open in new window


FYI you need autodiscover.emaildomain.com and common name (mail.emaildomain.com) in your certificate.
Please follow  this
0
 
cpmcomputersCommented:
If using the internal self signed certificate

First Run the fix my network in the sbs console
It should create a new certificate

Then you need to use "the add trusted certificate " wizard
Select use existing certificate on this server option
You should get a list of certificates with their expiry dates

Select the newly generated one
And you should be good

Assuming your autodiscover records where previously ok you should be good to go
0
 
cpmcomputersCommented:
Both wizards are in the network section of the sbs console btw
You do not need to use Microsoft certificate management on sbs

You will need to do this next time the certificate expires
(Although there is a cost involved many professionals would suggest installing a third party certificate )
0
 
tammieRAuthor Commented:
I was able to create a Certificate Request from the Exchange Management Console and ran it through the Microsoft Certificate Authority web page to create the certificate.  I then applied it to the pending request in the management console.  That made the request disappear.  I then went to a client to see what would happen and the expired message still popped up.  I found out how to delete the certificate from the client through the certmgr.msc and now I don't receive a message.  Can anyone tell me if my problem is fixed or did I do something bad with the steps that I described.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.