If a user gets new certificates, and their mailbox is the exchange 2003 server, thechange in default certificate will not replicate to the gal of the servers running exchange 5.5. Noticed when the older certificates still have a current date, but newer ones were issued post migration to the new server. As a result, anybody on the 5.5 side cannot send secure messages to the user on the exchange 2003 side. It will let them send it, but the recipient cannot read it unless they import their older certs into their cert store as well. Any ideas would be appreciated.
