How to renew an Exchange certificate on a Windows 2012 R2 CA.

I am getting an error while trying to renew an Exchange Certificate that expired:

The request contains no certificate template information. 0x80094801

I created the certificate request through the exchange power shell using the following command:

Get-ExchangeCertificate -Thumbprint xxxxx| New-ExchangeCertificate -GenerateRequest -RequestFile \\mypath\myfile.req

I sign on to my CA machine and run MMC, add the CA snap-in, right-click the Server name, All-tasks, Submit new request.

What am I doing wrong?

Thanks
MikeBroderickAsked:
Who is Participating?
 
MAS (MVE)Connect With a Mentor Technical Department HeadCommented:
Hi MikeBroderick,
Create a  CSR command using the below tool. Run the command from Exchange management shell.
https://www.experts-exchange.com/articles/28662/Easy-CSR-creation-Exchange-2007-2010-and-2013.html

Complete pending requestImport certificate.
https://www.digicert.com/ssl-certificate-installation-microsoft-exchange-2010.htm
https://practical365.com/exchange-server/exchange-2013-complete-pending-certificate-request/

Enable IIS,SMTP on the newly imported certificate. Check step 4 in the below articles.
https://www.experts-exchange.com/articles/29657/Exchange-2010-Fix-for-an-Invalid-certificate-and-related-issues.html
https://www.experts-exchange.com/articles/29662/Exchange-2013-Fix-for-an-Invalid-certificate-and-related-issues.html

Delete the old certificate using below command.

Remove-Exchangecertificate -thumbprint xxxxxxxxxxxxxxxxxxxxxxxx
you will get the thumbprint by the below command
Get-Exchangecertificate.

Thanks
MAS
0
 
Omar SoudaniConnect With a Mentor System Support EngineerCommented:
certificate template will only issue to Domain Admins.

Please refer to this for complete comment:

https://www.experts-exchange.com/questions/28217522/Issue-certificate.html
0
 
MikeBroderickAuthor Commented:
I did it. Same problem.

When I add the snap-in, something strange happens. It says Certificate Templates - SVR03.myDomain.local. SVR03 is my backup server, SVR04 is the server that has the CA. Is this a problem?

Also, am I supposed to add the permissions to the Web Server? I am trying to renew an exchange certificate.
0
 
MikeBroderickAuthor Commented:
Update: I changed Certificate Templates - SVR03 to - SVR04. Still having the same problem though.
0
 
MAS (MVE)Connect With a Mentor Technical Department HeadCommented:
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.