I recently re-keys me exchange 2010 std certificate to sha-2 with Go Daddy. I noticed after the process I still have a few certificates on my exchange server. I am not sure if I need to remove the older one? Would the older one still work if it was re-keyed to sha-2?

Also, I only imported the certificate on my 2 CAS servers is that correct or do I need to install it on my two DAG servers as w

It's not necessary to remove unused, expired and invalid certificates, but doing so is good housekeeping practice and will keep the inevitable event log warnings telling you that you have expired certificates from appearing.

Hi,

I agree with Ed Crowley. We don't have to remove other certificate in your Exchange server. Just make sure your new certificate has been assigned with proper services (IIS, IMAP, POP, SMTP).

Regards,