Microsoft Exchange could not find a certificate that contains the domain name.....

Yashy
Yashy used Ask the Experts™
on
hi guys

this morning, none of the Macs on our systems were able to connect to our Exchange. However, all of the PC's are fine and still are able to send/receive emails.

I went into the logs on the Exchange server and saw:

"Microsoft Exchange could not find a certificate that contains the domain name mail.contoso.com in the personal store on the local computer....."

I looked at our certificate and it doesn't expire until 2016. I enabled the thumbprint of the certificate for SMTP also.

Yet still, this error is coming up and Macs still can't connect.

Any ideas? Should I recreate a new certificate?

Thanks

Yashy
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Commented:
You don't mention what exchange version you are on but from this link
link to exchange issue



I solved the problem today like this;
1. On the "Exchange Management Shell" I wrote "Get-ExchangeCertificate"  command..
there are many thumbprints of cretificates (Wrongly I created many certificates before)
I looked to correct thumbprint from OWA certicate from Internet explorer...
2. After that on the shelll I wrote  "Enable-ExchangeCertificate -Thumbprint 3afd24627925332cd096f45eb5b4473c72526112 -Services "SMTP"    *(These thumbprint numbers ar sample)

After that all errors are cancelled... I'm getting correct information from TLS

Author

Commented:
I am using Exchange 2007.

I have followed everything on this link:

http://www.mikepfeiffer.net/2010/04/troubleshooting-event-id-12014-in-exchange-20072010/

I'm wondering whether I should re-create a new certificate?

Commented:
You say the pc's can send and receive ok, I presume they are not using outlook anywhere but are standard outlook clients? if so then the cert would not affect them only the macs, what if you try owa to the server do you get a cert error?
11/26 Forrester Webinar: Savings for Enterprise

How can your organization benefit from savings just by replacing your legacy backup solutions with Acronis' #CyberProtection? Join Forrester's Joe Branca and Ryan Davis from Acronis live as they explain how you can too.

Author

Commented:
All PC's are using Outlook 2007/2010. All Macs are using Outlook 2010.

I can use OWA without any issues either and no there are no certificate errors when accessing OWA to the local server in the browser.

However, the event logs are again showing : "Microsoft Exchange could not find a certificate that contains the domain name mail.consoto.com in the personal store on the local computer....."

This is after I enabled the certificate for SMTP. The certificate is valid until 2016 for services IIS, SMTP, POP, IMAP.

So I don't understand this issue?

Author

Commented:
I haven't attempted rebooting Exchange. Maybe worth a shot?

Author

Commented:
I've found something that may be like a discrepency:

In the error log, the error says mail.contoso.com as the FQDN (for example).

But when I run the Get-Certificate command, the Certificate Domain is: 'Exchange.matches.com'.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial