Hello Team, urgent issue :(
I have an issue for some reason the internal cert of my Exchange 2007 has expired, I have never had this happen before.
Upon logging into Exchange the end users are receiving certificate messages. When I check the event log on the Exchange I see the following errors:
event if: 12016
There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of domain.bgclh.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.
Event id: 12014
Microsoft Exchange couldn't find a certificate that contains the domain name domain.local in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector Outbound with a FQDN parameter ofdomain.bgclh.local. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.
Event id 12024
Microsoft Exchange could not load the certificate with thumbprint of A51539EEE8BF4871B3184B5152A16B20016A757C from the personal store on the local computer. This certificate was configured for authentication with other Exchange servers. Mail flow to other Exchange servers could be affected by this error. If the certificate with this thumbprint still exists in the personal store, run Enable-ExchangeCertificate A51539EEE8BF4871B3184B5152A16B20016A757C -services SMTP to resolve the issue. If the certificate does not exist in the personal store, restore it from backup by using the Import-ExchangeCertificate cmdlet, or create a new certificate for the FQDN or the server enabled for SMTP by running the following command: New-ExchangeCertificate -DomainName serverfqdn -Services SMTP. Meanwhile, an ephemeral, self-signed certificate with thumbprint A5C8C30C70310FC100C82175A095369996695774 is being used.