Solved

Exchange 2007: Event ID 12016, There is no valid SMTP TLS certificate

Posted on 2016-08-08
4
68 Views
Last Modified: 2016-08-11
Hi Experts

Application EventID 12016 from MSExchangeTransport on SBS 2008

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of SERVER.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of SERVER.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

I assume this is related to SSL cert which I replaced recently using a paid 3rd party certificate. I used the SBS Wizard to replace the cert. I did not add server.domain.local  to the names in the cert when created

Is there a way to fix this error?
0
Comment
Question by:Alexandre Michel
  • 2
  • 2
4 Comments
 
LVL 25

Accepted Solution

by:
-MAS earned 500 total points
ID: 41748276
You need 2 certificates. one 3rd party with IIS,SMTP (IMAP and POP if using) services enabled and one self signed with only SMTP services enabled.

Run "get-ExchangeCertificate" from Exchange Management Shell.
Note Thumbprint of the certificate that reflect the required FQDN name of the server.
Review the current certificate that use by the Exchange server and each certificate function.
Write "Enable-ExchangeCertificate -Thumbprint 2afd26617915932ad096c48eb3b847fc7457662 -Services "SMTP"

If you have only one certificate run "New-Exchangecertificate" which will create a new certificate enable SMTP service on that certificate by the above command if not enabled.

Please check this for details
https://technet.microsoft.com/en-us/library/aa998327(v=exchg.160).aspx

Thanks
0
 
LVL 4

Author Comment

by:Alexandre Michel
ID: 41748729
Thanks. I will implement this on Thursday
Does this affect email flow at all? No-one ever complained that email was missing or delayed
0
 
LVL 25

Expert Comment

by:-MAS
ID: 41748763
Sure.
it will not affect your mail flow.
1
 
LVL 4

Author Closing Comment

by:Alexandre Michel
ID: 41752089
Thanks for your help
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In-place Upgrading Dirsync to Azure AD Connect
how to add IIS SMTP to handle application/Scanner relays into office 365.
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question