To update the TLS Send/Receive Connector Cert
- Open EAC
- Click Servers
- Click Certificates
- Find the correct Cert, click "renew"
- Specify Save location, get CSR and submit
- When you receive the Cert back, click complete
- Open MMC.Msc and add Certificate/Local Computer
- Make sure renewed cert has key assigned (If it doesn't, run Digicert app)
- open cert and make a note of thumbprint (I.e. 374cd857af46661f42b4fe027a777902578c03c2)
- Open Exchange Management Shell
- Enter the following commands, with the new thumbprint
----------------------------------------------------------------------------
$cert = Get-ExchangeCertificate -Thumbprint <New Thumbprint>
$tlscertificatename = "<i>$($cert.Issuer)<s>$($cert.Subject)"
#To Replace Send Connector –
Set-SendConnector "Outbound to Office 365" -TlsCertificateName $tlscertificatename
Set-SendConnector "All Outgoing Mail" -TlsCertificateName $tlscertificatename
#To Replace Receive Connector –
Set-ReceiveConnector "HYBRIDEXCHANGE\Default Frontend HYBRIDEXCHANGE" -TlsCertificateName $tlscertificatename
-----------------------------------------------------------------------------
***IIS - Sites - Exchange Back End - Bindings - Change HTTPS Cert to new Certificate***