Re: SSL Cert on SMTP

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Andy David {MVP} <adavid@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Wed, 30 Jul 2008 19:18:22 -0400

On Wed, 30 Jul 2008 15:55:24 -0700, "Jack" <blank@xxxxxxxxxx> wrote:

I have 2 certs on Exchange 2007 SP1, the self-signed cert and a 3rd party
cert.

I enabled SMTP on the 3rd part cert and when I run get-exchangecertificate,
it shows that SMTP is enabled on both certificates.

Email clients get a warning that the SSL cannot be verified. This is because
Exchange is using the self-signed cert and not the 3rd party cert.

I tried to remove SMPT from the self-signed cert by running
enable-ExchangeCertificate -thumbprint .... -services "None", but it did not
remove SMTP from the self-signed cert.

Why isn't it removing SMTP from the self-signed cert and how do I get
Exchange to use the 3rd party one?

Thanks.

When you enabled it, it should have prompted you to overwrite the
existing SMTP cert for the service.

.

Follow-Ups:
- Re: SSL Cert on SMTP
  - From: Jack

References:
- SSL Cert on SMTP
  - From: Jack

Prev by Date: Re: Exchange 2007 Certificate query
Next by Date: Re: Exchange 2007 Certificate query
Previous by thread: SSL Cert on SMTP
Next by thread: Re: SSL Cert on SMTP
Index(es):
- Date
- Thread

Relevant Pages

Re: Exch2007: External SMTP and Intra-Org SMTP mix matched SSL req
... into another service to accept inbound SMTP and relay it inside. ... I also have the external FQDN cert, which is assigned to POP, IMAP and OWA ...
(microsoft.public.exchange.connectivity)
Re: 3rd party cert vs self signed
... This should allow you to use your 3rd party certificate for SMTP. ... Also, if you have an internal CA, you should be able to request a PKI cert and use that for SMTP. ... You can do "Enable-ExchangeCertificate -Thumbprint thumbprinthere ...
(microsoft.public.exchange.setup)
Re: SSL Cert on SMTP
... that is on the cert (that clients are connecting to), restart transport, ... Conversation: SSL Cert on SMTP ...
(microsoft.public.exchange.admin)
Re: SSL certificates
... service on your new valid certificate. ... Cert 3 - expires 1/29/2009 ... On my recieve connector the FQDN is server.mydomain.com (internal server ... Services - IIS, SMTP ...
(microsoft.public.exchange.admin)
Re: SSL Cert on SMTP
... I enabled SMTP on the 3rd part cert and when I run get-exchangecertificate, ... Why isn't it removing SMTP from the self-signed cert and how do I get ...
(microsoft.public.exchange.admin)