Rexxer

Some tips for me and other

Exchange 2019 + renew the certificate

  1. You cannot renew the certificate via WebGUI, Powershell only. We will use Godaddy and we have the existing certificate which we will renew.
  2. Get the renewed certificate from Godaddy.
  3. Run IIS management console on the first Exchange server.

Go to Server certificates and click Complete certificate request.

Choose the certificate from Godaddy. It will appear in the list with your current server’s private key.

  1. Export the certificate with the private key for other servers.
  2. Run Exchange powershell with commands (replace with your thumbprint and names):

Get-ExchangeCertificate | Format-List FriendlyName,Subject,CertificateDomains,Thumbprint,Services

Enable-ExchangeCertificate -Thumbprint 89617470A0…864C2CDBA -Services POP,IMAP,IIS,SMTP

$cert = Get-ExchangeCertificate -Thumbprint 89617470A…CA864C2CDBA

$tlscertificatename = “<I>$($cert.Issuer)<S>$($cert.Subject)”

Get-SendConnector

Set-SendConnector “Outbound to Office 365 – eb5adf9a-xxxx-xxxxx-xxxx-4d5bc589be83” -TlsCertificateName $tlscertificatename

Set-ReceiveConnector “Server \Default Frontend Server ” -TlsCertificateName $tlscertificatename

iisreset

  1. Go to IIS “Exchange Backend” and assign the certificate. Then you can delete the old one via GUI.

Comments are currently closed.