Outbound Email Not Flowing From Exchange 2007 after TLS Certificate Renewal
Posted on 2011-09-09
I have a client with a SBS2008 server, so Exchange 2007 is the email software. Everything was running fine until a self-signed TLS cert expired and then we rebooted the server for maintenance, the Exchange Transport service would not start. When the server came back up, everything worked except outbound mail. Users were getting messages that their outbound emails were delayed on the server. Server logs showed:
"There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of <server.domain.local>. The existing certificate for that FQDN has expired."
- (I changed the domain name to protect client anonymity)
- Outbound email uses Postini via Private DNS
I renewed the self signed cert through Exchange Management Shell and I believe that part worked without a problem. Rebooted the server and I'm still not getting any outbound mail flowing. Postini reports they see no problem on their end.
Email is queuing and shows this for all queued messages:
"451 4.4.0 Primary target IP address responded with: "421 4.2.1 Unable to connect."
I imagine this is a fairly small thing to fix, but with an angry client with no outbound email, I am finding myself stuck. Does anyone have any suggestions here?