NEED TO RENEW SSL CERTIFICATE but between my exchange and my provider there is confusions.

Hi,
I don't understand how the process works.
My Exchange 2016 server tells me its certificate expired today.
I exchange certificate I see "Renew" BUT on my GoDaddy provider I see "Certificate Emitted"  and the date is good up to 2021.
So why would I need in Exchange to click Renew and like do the whole process of validation when with goDaddy I can download the already prepared new certificate..
Can I just "import" it in exchange....
Confusing....
tx for the clarifications.
philjansAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David Johnson, CD, MVPRetiredCommented:
download and install the certificate and in certificate manager get the signature of the certificate now in exchange shell
https://www.digicert.com/csr-creation-ssl-installation-exchange-2016.htm
philjansAuthor Commented:
so I just skip no.1 "To create your certificate signing request (CSR), see" and start at no.2?
philjansAuthor Commented:
Step 6 don't match... it says "On the Certificates page, in the center pane, select your certificate request and then in the certificate request details pane to the right, under Status, click the Complete link. "   but I have "Renew"... so it doesn't work
Price Your IT Services for Profit

Managed service contracts are great - when they're making you money. Yes, you’re getting paid monthly, but is it actually profitable? Learn to calculate your hourly overhead burden so you can master your IT services pricing strategy.

timgreen7077Exchange EngineerCommented:
See the below link to assist you with renewing your exchange cert. The cert in Godaddy may be current because you have it set to auto renew. You will still need to create the cert in Exchange and import it into Godaddy for the new cert. See the below link on the step to renewing the cert in Exchange. Exchange 2013 and 2016 are the exact same steps.

https://practical365.com/exchange-server/renewing-an-ssl-certificate-for-exchange-server-2013/

Once you create the CSR and import to Godaddy and Godaddy prepares and send you the new cert see the below step by step instructions to install the new cert into your exchange server:

https://www.godaddy.com/help/exchange-server-2016-install-a-certificate-27338

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
MaheshArchitectCommented:
If godaddy panel you already have new cert with private key, u can simply import it on exchange server and assign services
Certificate can be imported from mmc console or from exchange console as well
Hani M .S. Al-habshiContributor as IT ExpertCommented:
My Exchange 2016 server tells me its certificate expired today. I exchange certificate I see "Renew" BUT on my GoDaddy provider I see "Certificate Emitted"  and the date is good up to 2021.


Please check Client Access Server setting before if it's configured correctly ...

http://www.shudnow.net/2013/07/26/outlook-certificate-error-and-autodiscover-domain-com-not-working/?fbclid=IwAR1Co2MePrjqNrCik3VI5amAPlIl828d5LNueid7m95mL12qMuMkZFa_X1Y
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
Tests you can do...

# Test any installed cert
echo QUIT | openssl s_client -servername $host -connect $host:995 | openssl x509 -noout -text | grep DNS:

# Test any cert file before installation
cat [cert|fullchain].pem | openssl x509 -noout -text | grep DNS:

Open in new window


Better to always test/know than guess.

Be sure you test your actual live cert to determine if it's still live or not.

Only trust the openssl tool... Your mileage will vary with other tools...
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.