skip to Main Content

Remove Exchange certificate with PowerShell

We can remove an Exchange certificate in two ways. One of them is through PowerShell. The other is with the Exchange Admin Center (EAC). In this article, you will learn how to remove an Exchange certificate with PowerShell.

Get Exchange certificate

Do you already know which Exchange certificate you need to remove? It’s good to get a list of the installed Exchange certificates first. After that, we will remove the certificate. Read the post Get Exchange certificate with PowerShell for more information. Run Exchange Management Shell as administrator. Run the following command.

We have two Exchange certificates installed on the Exchange Server. Both of them are bind to the SMTP service.

Certificates bound to the service SMTP are a little different than other services on an Exchange server. For example, if you bind a certificate to the service IIS, it removes the binding for any previous certificate and becomes the only certificate bound to that service. With SMTP, you can have multiple SSL certificates bound to the service.

Unbind Exchange certificate from service

We did run the Get-ExchangeCertificate cmdlet. After that, we know which certificate we want to remove. The certificate that we want to remove is the local certificate with thumbprint 89281F93928B282919A8F82929E82818188CF2EB.

The first step is to unbind the certificate from the SMTP service. Go to the Exchange Admin Center and open up the certificate, you will see that you can’t uncheck the SMTP service. It is greyed out. We need to use PowerShell to unbind the certificate from the SMTP service.

Remove Exchange certificate

The second step is to remove the certificate. Don’t remove the certificate until you’re 100% sure you don’t need it. It’s better to leave the certificate for a week or more before removing it. Run the command, press Y to confirm and press Enter.

Certificate with thumbprint 89281F93928B282919A8F82929E82818188CF2EB is removed.


In this article, you learned how to remove the Exchange certificate with PowerShell. Do you use the Exchange Admin Center or PowerShell? Don’t forget to unbind the service from the certificate first. After that, you can remove the certificate. I hope you enjoyed this article. You may also like Get Exchange certificate with PowerShell. Don’t forget to follow us and share this article.



ALI TAJRAN is a passionate IT Architect, IT Consultant, and Microsoft Certified Trainer. He started Information Technology at a very young age, and his goal is to teach and inspire others. Connect with ALI TAJRAN on social media. Read more »

This Post Has 0 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Back To Top