Windows 2003 R2 Enterprise 64bit Server
Exchange 2007 Enterprise 64bit
After opening port 1025 for smtp on my exchange server
I am now getting this error
Event Type: Error
Event Source: MSExchangeTransport
Event Category: TransportService
Event ID: 12014
Time: 6:00:36 PM
Microsoft Exchange could not find a certificate that contains the domain name mail.mydom.com in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector MYDOM Port 1025 with a FQDN parameter of mail.mydom.com. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate
-Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp
When I run get-exchangecertificate | fl I see many certificates
Some with a status of Valid and others invalid.
I attached the output for your review.
Question 1. Should all my certificates be valid?
Question 2. Are the invalid ones duplicates of the valid one?
Question 3. I see one certificate with the service SMTP as valid can I use that thumbprint
for the enable-certificate command
Question 4. Should I enable-certificate all the invalid certificates?
I guess my real question is which thumbprint should I use?