Exchange 2007 on SBS2008 TLS Errors

Here are the errors I am getting.  When I send an email., as well as the erorrs in the server log files.
It is driving me nuts.  In the Exchange Console TLS is not even enabled!!!!

The following recipient(s) cannot be reached: on 21/05/2009 4:57 PM
            You do not have permission to send to this recipient.  For assistance, contact your system administrator.
            < #5.7.1 smtp;550 5.7.1 Unable to relay for

Receive connector requires Transport Layer Security (TLS) before the MailFrom command can be run, but the server can't achieve it. Check the authentication settings of this connector.

Receive connector requires Transport Layer Security (TLS) before the MailFrom command can be run, but the server can't achieve it. Check the authentication settings of this connector.

The "Windows default" Policy Module "Initialize" method returned an error. A directory service error has occurred. The returned status code is 0x80072095 (8341).  The Active Directory containing the Certification Authority could not be contacted.

Microsoft Exchange couldn't find a certificate that contains the domain name in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector Windows SBS Internet Send SBSERVER with a FQDN parameter of If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.

I am at a lose as to why the server keeps throwing this error
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

First try this:

You obviously have TLS enable and do not have proprer certificate installed
activitAuthor Commented:
TLS is not showing as an Auth mechanism when I do an EHLO.  Does anyone know if the TLS can enable itself, as it is off now an email is working fine, but in a day or a week it will throw the messages above.  HELP...arrgh
activitAuthor Commented:
TLS is off.  But after a period of time the email starts to get the above error.  Next time it happens I will do the EHLO command to see if TLS is showing up in the Auth code.  The only other thing that ties in with email is the Trend Micro Messaging software, but I don't see how that could be the cause.
Did you ever get this fixed?    If not it is likely to do with antivirus/trend micro wfbs as we have had the same problem in multiple sites all running trend.   The issue and fix is shown here in the SBS blog:

The hotfix here:
(Make sure you select vista x64 when getting the hotfix for your SBS machine)
The KB article here:

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.