Just as a follow up here's what went down. I ended up going back in to the certificate wizard on the 2010 Exchange server (which by the way was a really helpful tool, should have been there a long time ago) tweaking my cert and generating the request file, I revoked the old certificate on the 2007 Exchange server, placed my request for the new UC certificate (which was generated pretty quickly) installed it on the 2010 server then exported it and installed it on the 2007 server and it's all good. Thanks Simon for the additional help, now I don't hate certificates quite so much.
John W. Cook Network Operations Manager Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610 Cell (352) 215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4 From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, May 01, 2012 2:37 PM To: MS-Exchange Admin Issues Subject: RE: quick question about SSL certificates on Exchange 2007 Me too John. It is a tossup what I hate more...certs or IE group policies. From: John Cook [mailto:john.c...@pfsf.org]<mailto:[mailto:john.c...@pfsf.org]> Sent: Tuesday, May 01, 2012 2:34 PM To: MS-Exchange Admin Issues Subject: RE: quick question about SSL certificates on Exchange 2007 I don't have a wildcard cert. Just going by what MS put in the install package. Did I ever mention I hate doing certs and this is a prime example. John W. Cook Network Operations Manager Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610 Cell (352) 215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4 From: Michael B. Smith [mailto:mich...@smithcons.com]<mailto:[mailto:mich...@smithcons.com]> Sent: Tuesday, May 01, 2012 2:05 PM To: MS-Exchange Admin Issues Subject: RE: quick question about SSL certificates on Exchange 2007 Ohh thhhbbbbtttt. It requires one extra configuration step (Set-OutlookProvider). It works just fine. And if you have a wildcart cert already, I'd suggest you go for it. From: John Cook [mailto:john.c...@pfsf.org]<mailto:[mailto:john.c...@pfsf.org]> Sent: Tuesday, May 01, 2012 1:46 PM To: MS-Exchange Admin Issues Subject: RE: quick question about SSL certificates on Exchange 2007 Except Microsoft doesn't recommend Wildcard certs for 2010 according to the 2010 setup program. I'm trying to use a UC cert. John W. Cook Network Operations Manager Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610 Cell (352) 215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4 From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]<mailto:[mailto:kennedy...@elyriaschools.org]> Sent: Tuesday, May 01, 2012 1:45 PM To: MS-Exchange Admin Issues Subject: RE: quick question about SSL certificates on Exchange 2007 A wildcard cert might be something to consider. They are cheap and you can use them all over the place. Basically you end up with a cert for *.pfsf.org They are like 70 bucks a year from GoDaddy, you can toss it at the 2010 server, no interruptions and you have great flexibility in the future. From: John Cook [mailto:john.c...@pfsf.org]<mailto:[mailto:john.c...@pfsf.org]> Sent: Tuesday, May 01, 2012 1:26 PM To: MS-Exchange Admin Issues Subject: quick question about SSL certificates on Exchange 2007 I'm in the early stages of bringing up a 2010 server and have run into an issue where I have to kill the existing SSL cert and install the new one on both servers. Obviously I will have an interruption in mail flow and I'm trying to mitigate that as much as possible. The E2010 server is non-functional at this stage, the E2007 server is at SP3 and holds all the roles. As I do them once every 3-4 years I just need to ask a simple question - is there any reason not to "clean house" and remove all the old thumbprints/certs and start fresh since mail is going to be interrupted anyway? Also, if the new cert doesn't have the FQDN of the 2007 server how will this affect things? TIA John Cook Network Operations Manager Partnership for Strong Families This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com<mailto:listmana...@lyris.sunbeltsoftware.com> with the body: unsubscribe exchangelist This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ________________________________ CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe exchangelist