can someone help, i am running sbs 2008 with exchange 2007, i got an error from the daily network report that 'The certificate that is helping to secure your Web site traffic will expire in less than two weeks. Before then, run the Fix My Network Wizard from the Connectivity subtab on the Network page of the Windows SBS Console. I dont want to run the wizard as my router's firewall is preventing the access to the server. when i attempted renewing via exchange management shell, i got a warning which tells me to overwrite the default smtp certificate (which will expire in the future, 2013) i want to know 1)what is the implication of overwriting an existing certificate which is yet to expire with a new one (note they are self signed) 2)Should I remove expired certificates from the server?

1) The implication is that you want to replace the certificate. That's probably what you want to do if you're replacing an expiring certificate with a new one. Make sure that the certificate you're replacing is configured the same except for expiry date as the new one. 2) I would, but only after you're sure the new certificate works.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

1) The implication is that you want to replace the certificate. That's probably what you want to do if you're replacing an expiring certificate with a new one. Make sure that the certificate you're replacing is configured the same except for expiry date as the new one. 2) I would, but only after you're sure the new certificate works.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

Hi Eaglelinkcon, Since you use self-signed certificate and the certificate does not expire, "It is a best practice to renew the self-signed certificates before they expire. You can use the Exchange Management Shell to renew the self-signed certificate by cloning the certificate. You can clone the certificate by first using the Get-ExchangeCertificate cmdlet to obtain the thumbprint of the current default certificate for your domain." For example: Get-ExchangeCertificate -Thumbprint c4248cd7065c87cb942d60f7293feb7d533a4afc | New-ExchangeCertificate For more information, please see: Understanding the Self-Signed Certificate in Exchange 2007 http://technet.microsoft.com/en-us/library/bb851554(v=exchg.80).aspx By the way, as you are running SBS, I would also suggest you seek the solution in the SBS forum, http://social.technet.microsoft.com/Forums/en-US/smallbusinessserver/threads Frank Wang TechNet Community Support

Hi Eaglelinkcon, Any updates?Frank Wang TechNet Community Support