Solved

Event id 12016 Exchange

Posted on 2014-10-27
4
142 Views
Last Modified: 2015-05-25
The error message is --there is no valid smtp transport layer security tls certificate for the fqdn of XXXXXXXXXXthe existing certificate fro that domain has expired.  

When I download the certificates once a year, I install it into the IIS .  I don't believe I have ever added the tls service in the exchange server itself. As it stands right now the current certificate is good until 11-11-14.  I tried going into the exchange shell and enabling the exchange certificate, but I'm not positive on what the command line should be for TLS specifically?
0
Comment
Question by:Lamrski
  • 3
4 Comments
 
LVL 29

Accepted Solution

by:
becraig earned 500 total points
ID: 40407537
ok so you need to generate a new smtp self signed cert:

 Get-ExchangeCertificate <current cert thumbprint>| New-ExchangeCertificate
Then Yes to All
and proceed to complete.

You can get the thumbprint by running
 Get-ExchangeCertificate | fl
Then identify the expired certificate in question.
0
 
LVL 29

Expert Comment

by:becraig
ID: 40407539
Here is a previously answered question that is just as helpful:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28382854.html
0
 

Author Comment

by:Lamrski
ID: 40408855
Will this interfere with the certificate I already have  in place through a third party for my IIS?
0
 
LVL 29

Expert Comment

by:becraig
ID: 40408862
no the TLS certificate will not impact anything for IIS.

Also if you notice, the first step is to look for the actual expired certificate and then simply creating a new one.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question