It's been a while since I had to deal with Exchange certificates (in fact not since I upgraded from Exchange 2003).
Our certificate setup is as follows: we have a CA server on our domain and the two servers that require certificates are TMG 2010 (firewall) and Exchange 2010
The Exchchange has two certificates registered:
- one for IMAP, POP, IIS, SMTP- issued to "DNS name of external MX record" Issued by "Internal CA"- ABOUT TO EXPIRE
- one for SMTP- issued to "Name of Exchange server", issued by "Name of Exchange server"- self signed- VALID UNTIL 2016
Two questions:
- Is the second certificate required for internal SMTP comunications
- How do I go about renewing the first Exchange certificate? I have renewed our commercially signed certificate six months ago so it's valid for another 2.5 years.
As far as i can remember, I have to start the renewal process in Exchange EMC, complete it on the CA and then to import it on the Exchange server.
Are these the correct steps? Can someone please give me more detailed instructions?
Thanks!
Marco S
