Hi In the eventlog I found some reports that a certificate was soon to be expired. I found some articles on this and I was able to retrieve a list of certs on my exchange server: Get-ExchangeCertificate >>> Results: Thumbprint Services Subject ---------- -------- ------- 803DA5005941C1D1D7170625AA9XXXXXXXX SIPU. CN=w2k3-ex01 0A4FF7870DDBE477146F156EDAA1XXXXXXXX SIPU. CN=w2k3-ex01 8C232E88F91E151C99F991CB7AXXXXXXX S...W CN=owa.mydomain.com... OLD-> AEC4A873B3D5B939BF6901F20C1XXXXXX SIPUW CN=w2k3-ex01.mydomain.... OLD-> CB5D293980146498032F71DBAAB7XXXXXXX SIPU. CN=w2k3-ex01 (I removed some chars from the thumbprint and put in X's) Then I tried generating a new cert, but I was not sure what I was doing and there are a lot of different "manuals" out there to be found. I did a few attempts and one of them was: new-ExchangeCertificate -Services imap, pop, um, iis, smtp Eventually I now ended up with this list: Thumbprint Services Subject ---------- -------- ------- 8D81C906B95ECB9BC8E44A8017CED6XXXXXXXX SIPUW CN=w2k3-ex01 0A8B4825BE967F64F9EF1636CB39AXXXXXXXXSIPU. CN=w2k3-ex01 1000100A338790EA6EC92A5266D666XXXXXXXXSIPU. CN=w2k3-ex01 127D0B69C2F51BB6F54403A0E58AAXXXXXXXXSIPU. DC=local, DC=mydomain,... 611B6684E7462329C1B8C7B9882CA2XXXXXXXXSIPU. DC=local, DC=mydomain,... 803DA5005941C1D1D7170625AA901XXXXXXXXSIPU. CN=w2k3-ex01 0A4FF7870DDBE477146F156EDAA16XXXXXXXXSIPU. CN=w2k3-ex01 8C232E88F91E151C99F991CB7ACAXXXXXXXXS...W CN=owa.mydomain.com... AEC4A873B3D5B939BF6901F20C1BXXXXXXXXSIPU. CN=w2k3-ex01.mydomain.... CB5D293980146498032F71DBAAB77XXXXXXXXSIPU. CN=w2k3-ex01 So you see, it's become a mess. How do I check if the new generated certs are being used and correct? How can I check if the old ones can be deleted? Gabrie

Check the output of 4 cmdlets listed in this article, if you get any doubt then you can post the result here too... Exchange 2007 SP2: Self-Signed Certificate Validity Changed http://exchangeshare.wordpress.com/2009/10/01/exchange-2007-sp2-self-signed-certificate-validity-changed/Amit Tank | MVP Exchange Server | MCITP: EMA | MCSA: M | http://ExchangeShare.WordPress.com

Hi Those steps I have gone through before. Strange thing is that when removing the cert I receive a following: [PS] C:\Documents and Settings\Administrator>remove-ExchangeCertificate -Thumbpr int AEC4A873B3D5B939BF6901F20C1BF85EF986AA3B Remove-ExchangeCertificate : The default certificate cannot be removed. Parameter name: Thumbprint At line:1 char:27 + remove-ExchangeCertificate <<<< -Thumbprint AEC4A873B3D5B939BF6901F20C1BF85E F986AA3B Looks like the cert is not being used. Gabrie

Ok, can you disable all services before removing exchange certificate... Enable-ExchangeCertificate -ThumbPrint "AEC4A873B3D5B939BF6901F20C1BF85E"-Services None Remove-ExchangeCertificate -ThumbPrint "AEC4A873B3D5B939BF6901F20C1BF85E"Amit Tank | MVP Exchange Server | MCITP: EMA | MCSA: M | http://ExchangeShare.WordPress.com

Yes, I can disable the services on the cert: Enable-ExchangeCertificate -ThumbPrint "AEC4A873B3D5B939BF6901F20C1BF85EF986AA3B" -Services None returns an empty prompt But when checking withGet-ExchangeCertificate, I get this: Thumbprint Services Subject ---------- -------- ------- FEBB8A92F966CF24BD509641B502A25E1E4849D9 .IPUW DC=local, DC=vanzanten,... FE1045686BA69AE8C7C307507F258EC55B1AD7BA SIPU. DC=local, DC=vanzanten,... 8D81C906B95ECB9BC8E44A8017CED60758FDECA9 SIPU. CN=w2k3-ex01 0A8B4825BE967F64F9EF1636CB39A0C766A0CE80 SIPU. CN=w2k3-ex01 1000100A338790EA6EC92A5266D666059978694B SIPU. CN=w2k3-ex01 127D0B69C2F51BB6F54403A0E58AAB84CAC01BF2 SIPU. DC=local, DC=vanzanten,... 611B6684E7462329C1B8C7B9882CA26CE43EE5D5 SIPU. DC=local, DC=vanzanten,... 803DA5005941C1D1D7170625AA901D6BE096207E SIPU. CN=w2k3-ex01 0A4FF7870DDBE477146F156EDAA168E3EA0275CF SIPU. CN=w2k3-ex01 8C232E88F91E151C99F991CB7ACAFD7667638745 S...W CN=owa.basvanzanten.com... AEC4A873B3D5B939BF6901F20C1BF85EF986AA3B SIPU. CN=w2k3-ex01.vanzanten.... CB5D293980146498032F71DBAAB77A9B73A8405E SIPU. CN=w2k3-ex01 Looks like it is still used for the services. Removing it still doesnt work: Remove-ExchangeCertificate -ThumbPrint "AEC4A873B3D5B939BF6901F20C1BF85EF986AA3B" Remove-ExchangeCertificate : The default certificate cannot be removed. Parameter name: Thumbprint At line:1 char:27 + Remove-ExchangeCertificate <<<< -ThumbPrint "AEC4A873B3D5B939BF6901F20C1BF85EF986AA3B"

That's strange, did you try removing from Certificate MMC by adding Computer certificates and looking into Personal Certificates?Amit Tank | MVP Exchange Server | MCITP: EMA | MCSA: M | http://ExchangeShare.WordPress.com

Removing through MMC worked. Thanks. Now monitoring eventlog and see if everything is ok in the next 2 hrs. Gabrie

Now severall hours after I deleted the personal certs, I receive no more errors in my eventlog. Thank you for the help !!! Gabrie

Great! You're welcome!Amit Tank | MVP Exchange Server | MCITP: EMA | MCSA: M | http://ExchangeShare.WordPress.com