get-exchangecertificate | fl
The system will respond with the names of the certificates on the system. Review each one and get the following info:
- thumbprint of the certificate that’s about to expire
- the services assigned
- the certificate domains
new-exchangecertificate –confirm –domainname [certificate domains separated by a comma] –keysize 2048 –services [place the assigned services in quotes separated by a comma]
enable-exchangecertificate –thumbprint [thumbprint value] – services none
Want more info? Check out MS TechNet here.