Solved

SQL Server 2008 SSIS SendMail task, error: The remote certificate is invalid according to the validation procedure

Posted on 2011-03-11
3
3,598 Views
Last Modified: 2012-05-11
Hello,

I am trying to use "Send Mail" task in SQL SSIS, but it keeps giving me an error:

SSIS package "Package1.dtsx" starting.
Error: 0xC002F304 at Send Mail Task, Send Mail Task: An error occurred with the following error message: "The remote certificate is invalid according to the validation procedure.".
Task failed: Send Mail Task
SSIS package "Package1.dtsx" finished: Success.

Open in new window

My settings are to use SSL and Windows Authentication.

If I uncheck both, and configure my Exchange distribution group to not require "authenticated" users only, it works but this is not ideal we would like to use SSL.

Is there anyway to fix this?

Thanks.
0
Comment
Question by:mirde
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 14

Assisted Solution

by:Daniel_PL
Daniel_PL earned 63 total points
ID: 35122769
Have you installed apropriate certificate into trusted root certificate store?
Is this certificate expired? Check your date/time/time zone is off in the SQl Server?
0
 
LVL 28

Accepted Solution

by:
Ryan McCauley earned 62 total points
ID: 35128905
Are you sure that your certificate is universally valid? If you certificate is self-signed, then the SQL Server may not trust it (since it's not from a known authority), and that could give you the error. You'd have to add your DC's root issuing cert as a "Trusted Root Certificate Authority" for your domain computers. For example, I just checked my computer and our root cert is in the certificate store as a "Trusted Root" certificate, so my computer (and services on it) will identify certificates issued by our DC as authentic.

Alternatively, you can get a copy of the certificate the SMTP server is using for SSL and then add it to your local store as a trusted certificate - then your SQL Server will use it for SSL negotiation. Here's a walk-though of this (Server 2003, but probably not changed a whole lot for 2008):

http://www.windowsitpro.com/article/certificates/how-do-i-create-a-certificate-trust-list-for-a-domain-.aspx

Just a note - this error occurs because, as an untrusted certificate, your computer can't tell if it's falling for a "Man in the middle" attack (where somebody intercepts your traffic and then forwards it somewhere malicious), so it's doing this to protect you. You may already know that - sorry if you do - but I just wanted to clarify it.
0
 

Author Closing Comment

by:mirde
ID: 35130014
Thank you, installing the certificates fixed my issue now I am able to send emails as an Authenticated User.
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question