I'm using Hybrid Office 365 and
Exchange Server 2013 SP1.
We are in the migration phase where there are mailboxes and Public Folders in
both places.
What are the steps that I can take to renew the Exchange Delegation Federation Self-signed certificate?
Exchange Delegation Federation Self-signed certificateIssuer: CN=FederationStatus ValidAssigned to servicesSMTP, Federation
Is there any expected outage or this can be done during business hours with no interruptions to the users or Remote Move Migration?
https://docs.microsoft.com/en-us/exchange/renew-the-federation-certificate-exchange-2013-help
I assume I will need to go through this steps for each and every Exchange servers in my OnPremise DC (8 nodes DAG)?
Update a working federation certificate (expiring in 3 days)
Step 1: Create a new federation certificate
Do I need to specify both -Services Federation,SMTP like
in the existing certificate Assigned to services?
or should I just follow the -Services Federation verbatim
like in the steps suggested?
Step 2: Configure the new certificate as the federation certificate
I will follow as mentioned with my updated Thumbprint.
Step 3: Update the federation proof of domain ownership TXT record in external DNS
Do I have to change and verify all TXT records for each and ever
Accepted email domains? I have about 59+ accepted email domains.
Step 4: Verify the distribution of the new federation certificate to all Exchange servers
Wait for 15 - 30 minutes for the AD replication.
Step 5: Activate the new federation certificate
/* Server Support Specialist */