My client is running Exchange 2010. A couple of weeks ago we started receiving the following email rejections messages:
"Recipient address rejected: Message rejected due to: SPF fail - not authorized"
After doing some investigating I found the FQDN on our send connector did not match what was on our MX record and this was causing the problem. So, I changed the send connector to match our MX record and the above error was resolved but the following error is now showing up on our Exchange server
Microsoft Exchange could not find a certificate that contains the domain name mail.xxx-logistics.com in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector Internet Send connector with a FQDN parameter of mail.xxx-logistics.com. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.
So I contacted GoDaddy to add the domain name into the certificate. We have two certificates, neither contain mail.xxx-logistics.com. But one of the certificate contains HQ06SV.mlg.us which is the FQDN of our Exchange server. This is when I was informed that intranet Names and IP addresses in SSL will no loner work after Nov. 1, 2015.
So I'm very confused at how to proceed.
When I add mail.xxx-logistics to our certificate the Exchange error above should go away. But my FQDN which is on both of the exchange receive connectors (Client and Default) is still HQ06SV.mlg.us. I cannot change the FQDN on either of these receive connectors.
Go Dadddy stated I Need to Reconfiguring Microsoft Exchange Server to Use a Fully Qualified Domain Name.
Can anyone help clarify how to handle this FQDN in Exchange and in our certificates.
This is hard to explain I hope it makes sense.