<div>
The certificate is used in the connection end-point, therefore - CAS server and HYBRID servers. If you use EDGE to send email using TLS, it would also be required. Once certificate is replaced on Hybrid, re-run the HCW.<br />
There's no difference where csr is generated, as long as you correctly import the certificate and VALIDATE that in CERTIFICATES MMC, at the properties of the certificate you'll see a message - You have a private key corresponding to the certificate.<br />
This would mean the certificate was properly imported.
</div>


<div>
as i mentioned in question, can i have procedure to update<br />
and yes edge server also having that certificate, which is going to expire<br />
<br />
one more thing, this certificate is of Hybrid certificate, which used to have a hybrid connectivity.<br />
<br />
also on MBX server i can see no services assigned to that certificate which is going to expire, same with Hybrid server also, the same certificate not having any services assigned on one Hybrid, on another hybrid Pop and smtp<br />
<br />
on edge server only smtp service is assigned<br />
<br />
HCW is required to run ? is it mandatory and what it will do<br />
<br />
Please suggest me the steps to update.
</div>


<div>
could anyone suggest here..
</div>


<div>
could anyone suggest here<br />
<br />
we here need to update the hybrid certificate. Please suggest the steps how to do it..
</div>


<div>
1st thing u need to install / complete pending request &nbsp;from emc on same server from where u generated csr <br />
Because on that server certificate private key exists<br />
After that replace it on all cas and edge server<br />
All cas can be assigned cert from one exchange console<br />
Later on u need to run HCW as guided above so that hybrid config will be updated with new cert thumb print
</div>


<div>
<a href="https://www.google.co.in/url?sa=t&source=web&rct=j&url=https://practical365.com/exchange-server/exchange-2013-complete-pending-certificate-request/&ved=0ahUKEwjK9rvmzvDXAhVBro8KHc-gDaIQFggsMAI&usg=AOvVaw3i67LY0WuBX9I-0V5ML4QC" rel="ugc">https://www.google.co.in/url?sa=t&source=web&rct=j&url=https://practical365.com/exchange-server/exchange-2013-complete-pending-certificate-request/&ved=0ahUKEwjK9rvmzvDXAhVBro8KHc-gDaIQFggsMAI&usg=AOvVaw3i67LY0WuBX9I-0V5ML4QC</a><br />
<br />
Above link will guide u thru process
</div>


<div>
Hello Mahesh,<br />
<br />
thansk for answer,<br />
<br />
1.Actually i have generated the Certificate request on MBX/CAS server ? so according to you i need to complete the certificate request on that first, then other 2 hybrid Server ? - and then to Edge<br />
<br />
2. so on all other server i need to import the certificate via IIS or from admin center ? because pending request is not coming up here. it is only coming on server where it was generated<br />
<br />
3. is internet should be working there on Exchange while updating the certificate ? and Revocation check option unchecked in internet explorer?<br />
<br />
4. Hybrid Configuration wizard is mandatory ? as we not done this in LAB exchange Server ? i want to avoid this, as it might can cause other issue ?
</div>


<div>
could hybrid wizard modify any connectors ?<br />
<br />
which connectors i can take backup as a safe side, i dont want HCW can affect anything
</div>


<div>
if you don't change any hybrid config explicitly while rerunning, it won't change any connectors, it simply update the config
</div>


<div>
so after updating the certificate on both edge, both hybrid and Mailbox server. Edge subscription need to resubscribed ? is it mandatory ? just a doubt and how to do it<br />
<br />
i have 2 Edge and 2 hybrid.
</div>


<div>
could you guide how to resubscribed edge subscription if required, without impacting any receive/send connector ?
</div>


<div>
<div class="content wysiwyg-content">
Hello Team,<br />
<br />
We having Exchange 2013 with CU 13 and in hybrid environment with O365<br />
<br />
2 MBX/CAS Server, 2 Hybrid Server, 2 Edge Server<br />
<br />
Public certificate from symantec is going to be expire very soon, i need to know the process of updating the Certificate<br />
i have generated the .csr request from one of the Hybrid server and from public PKI we got the .cer Certificate<br />
<br />
Could any export suggest, from which server i start updating the Certificate and what all steps are required on Hybrid,Edge,MBX<br />
<br />
on gateway side, it is normal ,we will update the new certificate<br />
<br />
Just keep in mind, we have hybrid environment, Please suggest as per this<br />
<br />
your help is really appreciated, as always i got from EE
</div>
</div>


Hello Team,

We having Exchange 2013 with CU 13 and in hybrid environment with O365

2 MBX/CAS Server, 2 Hybrid Server, 2 Edge Server

Public certificate from symantec is going to be expire very soon, i need to know the process of updating the Certificate
i have generated the .csr request from one of the Hybrid server and from public PKI we got the .cer Certificate

Could any export suggest, from which server i start updating the Certificate and what all steps are required on Hybrid,Edge,MBX

on gateway side, it is normal ,we will update the new certificate

Just keep in mind, we have hybrid environment, Please suggest as per this

your help is really appreciated, as always i got from EE

Exchange Public Certificate expiration

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Exchange

Office 365 is a group of software plus services subscriptions that provides productivity software and related services to its subscribers. Office 365 allows the use of Microsoft Office apps on Windows and OS X, provides storage space on Microsoft's cloud storage service OneDrive, and grants 60 Skype minutes per month. Office 365 includes e-mail and social networking services through hosted versions of Exchange Server, Skype for Business Server, SharePoint and Office Online, integration with Yammer, as well as access to the Office software. All of Office 365's components can be managed and configured through an online portal; users can be added manually, imported from a CSV file, or Office 365 can be set up for single sign-on with a local Active Directory using Active Directory Federation Services.