Solved

Exchange 2007: Event ID 12016, There is no valid SMTP TLS certificate

Posted on 2016-08-08
4
87 Views
Last Modified: 2016-08-11
Hi Experts

Application EventID 12016 from MSExchangeTransport on SBS 2008

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of SERVER.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of SERVER.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

I assume this is related to SSL cert which I replaced recently using a paid 3rd party certificate. I used the SBS Wizard to replace the cert. I did not add server.domain.local  to the names in the cert when created

Is there a way to fix this error?
0
Comment
Question by:Alexandre Michel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 27

Accepted Solution

by:
☠MAS☠ earned 500 total points
ID: 41748276
You need 2 certificates. one 3rd party with IIS,SMTP (IMAP and POP if using) services enabled and one self signed with only SMTP services enabled.

Run "get-ExchangeCertificate" from Exchange Management Shell.
Note Thumbprint of the certificate that reflect the required FQDN name of the server.
Review the current certificate that use by the Exchange server and each certificate function.
Write "Enable-ExchangeCertificate -Thumbprint 2afd26617915932ad096c48eb3b847fc7457662 -Services "SMTP"

If you have only one certificate run "New-Exchangecertificate" which will create a new certificate enable SMTP service on that certificate by the above command if not enabled.

Please check this for details
https://technet.microsoft.com/en-us/library/aa998327(v=exchg.160).aspx

Thanks
0
 
LVL 4

Author Comment

by:Alexandre Michel
ID: 41748729
Thanks. I will implement this on Thursday
Does this affect email flow at all? No-one ever complained that email was missing or delayed
0
 
LVL 27

Expert Comment

by:☠MAS☠
ID: 41748763
Sure.
it will not affect your mail flow.
1
 
LVL 4

Author Closing Comment

by:Alexandre Michel
ID: 41752089
Thanks for your help
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question