Exchange 2013 SP 1 with 2 member DAG with 1 DB. Our godaddy cert expired yesterday and now we can not login to ECP, it just flashes and takes you back to the login screen. We have the renewed godaddy cert. What is the proper way to get this renewed cert on the 2 servers?

You can manage certificates through the Exchange Management Shell.

From (https://social.technet.microsoft.com/Forums/en-US/d542a176-efe2-4bde-a818-3c6a92e150d2/cert-expired?forum=exchangesvrgeneral) ...

You can use the following cmdlets to manage digital certificates on an Exchange Client Access server:

• Import-ExchangeCertificate   This cmdlet is used to import certificates to a server. You can import a CA-signed certificate (to complete a pending certificate signing request (CSR)) or a certificate with a private key (PKCS #12 files, generally with a .pfx extension, previously exported from a server along with the private key).

• Remove-ExchangeCertificate   This cmdlet is used to remove certificates from a server.

• Enable-ExchangeCertificate   This cmdlet is used to assign services to a certificate.

• Get-ExchangeCertificate   This cmdlet is used to retrieve an Exchange certificate based on a variety of criteria.

• New-ExchangeCertificate   This cmdlet is used to create a new self-signed certificate or a CSR.

Once you have imported the new cert make sure to enable it on the applicable services.

example: Enable-ExchangeCertificate -Thumbprint <new cert thumbprint> -Services POP,IMAP,SMTP,IIS

• Marked as answer by forgiven 6 hours 6 minutes ago