We help IT Professionals succeed at work.

exchange 2010 Event ID: 12024

apollo-13 asked
after exchange server security updates ,i get error message:

Microsoft Exchange could not load the certificate with thumbprint of %1 from the personal store on the local computer. This certificate was configured for authentication with other Exchange servers. Mail flow to other Exchange servers could be affected by this error. If the certificate with this thumbprint still exists in the personal store, run Enable-ExchangeCertificate %1 -services SMTP to resolve the issue. If the certificate does not exist in the personal store, restore it from backup by using the Import-ExchangeCertificate cmdlet, or create a new certificate for the FQDN or the server enabled for SMTP by running the following command: New-ExchangeCertificate -DomainName serverfqdn -Services SMTP. Meanwhile, an ephemeral, self-signed certificate with thumbprint %2 is being used.

and if user open outllook ,then comes out password asking screen for the user
Watch Question

Sounds like the cert is missing or corrupt. Was this exchange server using a CA issued certificate or a self-signed certificate?


self-signed certificate
The below command is a fairly broad, cover-all-bases command to create a new self-signed certificate and assign it to the relevant services. It will most likely fix your problem but, not knowing the setup with hostnames etc on your network I can't be 100% sure.

New-ExchangeCertificate -IncludeAutoDiscover -IncludeServerFQDN -IncludeServerNetBIOSName -IncludeAcceptedDomains -Services SMTP, IMAP, POP, IIS

Open in new window