Solved

Certificate problem

Posted on 2013-05-22
3
211 Views
Last Modified: 2013-05-28
SBS 2008 + Exchange Server 2007

Our self signed certificate expired a few weeks ago. I used the wizard in the SBS console to replace it. I noticed today that event 12016 is now being logged quite frequently. This says 'There is no valid SMTP TLs certificate for the FQDN of ouremaildomain.co.uk.

I am not aware that I ever created a certificate for that email domain. When I set up the server, I used a completely different domain ourofficedomain.co.uk because our primary domain is hosted elsewhere for our ecommerce store. I set up an mx record to point mail.ouremaildomain.co.uk to our sbsserver.

I think I need to do some housekeeping. I can see that there are 9 expired certificates. With these names "Sites", "remote.ourserverdomain.com" and "Server.ourdomain.local" Is it definitely ok to delete all expired certificates?

Do I need to create a new certificate for our email domain? or do I just need to make exchange aware of the one i created a few weeks ago? Funny... in the list of certicates, I  can't see any certificate that was created recently
0
Comment
Question by:TownTalk
  • 2
3 Comments
 
LVL 15

Accepted Solution

by:
Skyler Kincaid earned 500 total points
ID: 39187643
You can delete the old certs and that won't causes any problems. When you were going through the Wizard you may not have thought to assign a cert to the SMTP service. Do you use that server as a SMTP server?

If you don't then it is nothing to worry about, if you do, you just need to make a new cert and assign it to that service to clear the event.
0
 

Author Comment

by:TownTalk
ID: 39187978
Yes I have an smtp server configured. I hadn't realised the event message was referring to that. Our production system uses it to send emails to internal users. I set this up some time after the server installation. So maybe it inherited the previous certificate.

If I re-run the wizard, is there something in there to assign the certificate to the smtp server?
0
 

Author Comment

by:TownTalk
ID: 39201507
When I ran the wizard to create a new certificate, it only allows one domain to be specified. So I specified the domain referred to by our internal smtp server. But it then configured RWW etc to correspond to that domain. We didn't want this. So I ran the wizard again with the original domain specified and all is well now. Thanks for your help.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Not sure what the best email signature size is? Are you worried about email signature image size? Follow this best practice guide.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
This video discusses moving either the default database or any database to a new volume.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now