Get-ExchangeCertificate | FL
If it instead returns a value of either Registry or None, reimport the certificate on the hybrid server, and then configure the certificate for an Exchange hybrid deployment. For more information about how to do this, go to the following Microsoft website:
- Registry: An internal, private PKI root CA that has been manually installed in the certificate store
- ThirdParty: A public, third-party root CA
In the case of a private CA, the Hybrid Configuration Wizard can’t be completed successfully. Self-signed certificates can’t be used for Exchange services in a hybrid deployment. You have to install and assign Exchange services to a valid digital certificate that is purchased from a trusted CA.
Article ID: 2879262 - Last Review: Dec 28, 2016 - Revision: 1