Solved

Exchange 2007: Event ID 12016, There is no valid SMTP TLS certificate

Posted on 2016-08-08
4
39 Views
Last Modified: 2016-08-11
Hi Experts

Application EventID 12016 from MSExchangeTransport on SBS 2008

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of SERVER.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of SERVER.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

I assume this is related to SSL cert which I replaced recently using a paid 3rd party certificate. I used the SBS Wizard to replace the cert. I did not add server.domain.local  to the names in the cert when created

Is there a way to fix this error?
0
Comment
Question by:Alexandre Michel
  • 2
  • 2
4 Comments
 
LVL 24

Accepted Solution

by:
-MAS earned 500 total points
ID: 41748276
You need 2 certificates. one 3rd party with IIS,SMTP (IMAP and POP if using) services enabled and one self signed with only SMTP services enabled.

Run "get-ExchangeCertificate" from Exchange Management Shell.
Note Thumbprint of the certificate that reflect the required FQDN name of the server.
Review the current certificate that use by the Exchange server and each certificate function.
Write "Enable-ExchangeCertificate -Thumbprint 2afd26617915932ad096c48eb3b847fc7457662 -Services "SMTP"

If you have only one certificate run "New-Exchangecertificate" which will create a new certificate enable SMTP service on that certificate by the above command if not enabled.

Please check this for details
https://technet.microsoft.com/en-us/library/aa998327(v=exchg.160).aspx

Thanks
0
 
LVL 4

Author Comment

by:Alexandre Michel
ID: 41748729
Thanks. I will implement this on Thursday
Does this affect email flow at all? No-one ever complained that email was missing or delayed
0
 
LVL 24

Expert Comment

by:-MAS
ID: 41748763
Sure.
it will not affect your mail flow.
1
 
LVL 4

Author Closing Comment

by:Alexandre Michel
ID: 41752089
Thanks for your help
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Utilizing an array to gracefully append to a list of EmailAddresses
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now