Prior to Exchange 2010 I always used self-signed certs. When they were about to expire I would run the commands below to renew them and remove the old cert.
Get-ExchangeCertificate [OLD THUMBPRINT] | New-ExchangeCertificate -Services IMAP, POP, IIS
Enable-ExchangeCertificate [NEW THUMBPRINT] -Services IMAP, POP, IIS
Remove-ExchangeCertificate [old Thumbprint]
Will the procedure still be the same? Sorry if this is a simple questions to some. I know enough about cert's to be dangerous.
Thanks
********** Below is from my current 2010 CAS **********
[PS] C:\Windows\system32>Get-ExchangeCertificate | fl
AccessRules : {System.Security.AccessControl.CryptoKeyAccessRule, System.Security.AccessControl.CryptoKeyAccessR
ule, System.Security.AccessControl.CryptoKeyAccessRule}
CertificateDomains : {snowwhite.MyDomain.com, autodiscover.MyDomain.com, sleepy.MyDomain.com, sneezy.MyDomain.com, jupi
ter.MyDomain.com, neptune.MyDomain.com, mercury.MyDomain.com}
HasPrivateKey : True
IsSelfSigned : False
Issuer : CN=MyDomain-CUTLER-CA, DC=MyDomain, DC=com
NotAfter : 6/3/2013 7:44:05 PM
NotBefore : 6/4/2011 7:44:05 PM
PublicKeySize : 2048
RootCAType : Enterprise
SerialNumber : 2614DDCF00000000001A
Services : IMAP, POP, IIS
Status : Valid
Subject : CN=snowwhite.MyDomain.com, OU=IT, O=DM, L=City, S=II, C=US
Thumbprint : A144C957A506927A2629918D08F68D4FB185D5B0
