when faced with SSL certificate renewals, it's nice to know which servers have the cert installed in the first place. If I have a cert that I need to renew (either issued internally or by a trusted third party), how do I determine which servers is it installed on? There must be a powershell script/other method to query all servers on the domain using thumbprints/friendly names/issuing authority. The server is running 2012 but I need an answer that works for 2008 as well if possible.
thanks in advance