I have two exchange servers in a single domain that share a DAG across a WAN.
Both have matching settings for receive connectors, and of course share the same send connector.
The same SAN certificate from GoDaddy is installed on both servers, and enabled for POP, IMAP,SMTP,IIS. get-exchangecertificate returns the same cert on both machines, with the same services enabled.
Both servers are able to send and receive mail through a smarthost without SSL working. Using fixyourip.com to view web certificates, both respond immediately and display the cert.
Using fixyourip.com to view the mail cert, one of them does not respond. The net impact is TLS will not work through this server. It comes back as 'not enabled' when testing the connection with things like MXtoolbox.
I need it to work.
I need help.