troubleshooting Question

STARTTLS Certificate Expiration

Avatar of CMCITD
CMCITDFlag for United States of America asked on
11 Comments1 Solution891 ViewsLast Modified:
On our Exchange 2007 server we had a certificate installed with the local FQDN of the server as an alternate name on the the certificate ( This certificate has expired and been removed from the system.   We recently purchased  new a multidomain ssl certificate and do not have the FQDN name of the server, just the external name (  We now receive Event 12014 stating that Exchange could not find a certificate that contains the domain name in the personal store on the local computer.  Therefore it is unable to support the STARTTLS SMTP verb for the connector Outbound.  I am under the impression that you can not change the FQDN to the external name on the send/receive connectors, so should I just disabled the TLS checkbox on the send connector so we no longer see this error?  Or how should I address this? SMTP is enabled for the certificate on Exchange but it doesnt have the server name in the name list so it is not recognized.  I dont think we enforce TLS on our connections so it may not be needed?

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 11 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 11 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros