At a client they wanted to deploy an add-in from OWA and the Exchange Admin Center and it just wouldn’t give me the option to download and when trying from the OWA you just get a blank page.

Upon further investigation, we checked the event logs and were presented with Event ID 2005:

There is our problem. It is actually not difficult to fix, there are a few commands that need to be run.

Firstly, you need to create a New-ExchangeCertificate and you can do so running this command:

  • New-ExchangeCertificate -KeySize 2048 -PrivateKeyExportable $true -SubjectName “cn=Microsoft Exchange Server Auth Certificate” -FriendlyName “Microsoft Exchange Server Auth Certificate” -DomainName “domainname”

Next we need use the Certificate Thumbprint from the previous command to run the next one:

  • Set-AuthConfig -NewCertificateThumbprint <ThumbPrint> -NewCertificateEffectiveDate (Get-Date)

Now we need to run the 3rd last command, we need to Publish the Certificate:

  • Set-AuthConfig –PublishCertificate

Now for the final command to remove the previous certificate:

  • Set-AuthConfig -ClearPreviousCertificate

You can either recycle the app pools for ECP and OWA or do an IISReset.

Event ID 2005 should then not be showing in the event logs anymore.

Hope it helps.


Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *