SMTP certificate expired

Alan Dala
Alan Dala used Ask the Experts™
on
Hi,

I just inherited an Exchange 2013 server and I see that one of the certificates is expired. This one is the SMTP certificate and it's been issued by the domain controller which is the CA. I'm not aware of any issues with any services because of certificate being expired but I was wondering what it does and if I should renew it.

Thank you!
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Will SzymkowskiSenior Solution Architect
Most Valuable Expert 2015
Top Expert 2015

Commented:
Is this the default cert that is used for your mail.domain.com? The only cert that really matters is the default one that you are using which has services assigned to it. So if the default cert is not expired you can leave the other one alone or just remove it entirely. If this is the "self signed certificate" then do not remove it, as it is required.

Will.

Author

Commented:
It doesn't look like the default one. It says: "Certification authority-signed certificate" and it's already expired. The 'self signed certificate' is still valid. Would it be worth getting a new one to replace the expired one? What would be the reason to have one in the first place? I'm not sure that I understand this 'certificate for smtp service' thing. What's actually certifying, that the email comes from the correct email server? As I mentioned, this is an internal certificate issued by the domain controller.


Thank you for the help!
Senior Solution Architect
Most Valuable Expert 2015
Top Expert 2015
Commented:
When you have an internal CA default certs are assigned to all machines, by default. The default cert will reference your virtual directories URL's that you have configured for Exchange. As long as the default certificate matches the URL's you have internally and externally and your default cert has not expired then you are fine.

You can just ignore that cert.

Will.

Author

Commented:
Thanks. Much appreciated.
Will SzymkowskiSenior Solution Architect
Most Valuable Expert 2015
Top Expert 2015

Commented:
Not a problem. Glad to help!

Will.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial