?
Solved

Exchange 2007: Event ID 12016, There is no valid SMTP TLS certificate

Posted on 2016-08-08
4
Medium Priority
?
92 Views
Last Modified: 2016-08-11
Hi Experts

Application EventID 12016 from MSExchangeTransport on SBS 2008

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of SERVER.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of SERVER.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

I assume this is related to SSL cert which I replaced recently using a paid 3rd party certificate. I used the SBS Wizard to replace the cert. I did not add server.domain.local  to the names in the cert when created

Is there a way to fix this error?
0
Comment
Question by:Alexandre Michel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 27

Accepted Solution

by:
MAS earned 2000 total points
ID: 41748276
You need 2 certificates. one 3rd party with IIS,SMTP (IMAP and POP if using) services enabled and one self signed with only SMTP services enabled.

Run "get-ExchangeCertificate" from Exchange Management Shell.
Note Thumbprint of the certificate that reflect the required FQDN name of the server.
Review the current certificate that use by the Exchange server and each certificate function.
Write "Enable-ExchangeCertificate -Thumbprint 2afd26617915932ad096c48eb3b847fc7457662 -Services "SMTP"

If you have only one certificate run "New-Exchangecertificate" which will create a new certificate enable SMTP service on that certificate by the above command if not enabled.

Please check this for details
https://technet.microsoft.com/en-us/library/aa998327(v=exchg.160).aspx

Thanks
0
 
LVL 4

Author Comment

by:Alexandre Michel
ID: 41748729
Thanks. I will implement this on Thursday
Does this affect email flow at all? No-one ever complained that email was missing or delayed
0
 
LVL 27

Expert Comment

by:MAS
ID: 41748763
Sure.
it will not affect your mail flow.
1
 
LVL 4

Author Closing Comment

by:Alexandre Michel
ID: 41752089
Thanks for your help
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
Are you an Exchange administrator employed with an organization? And, have you encountered a corrupt Exchange database due to which you are not able to open its EDB file. This article will explain all the steps to repair corrupt Exchange database.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question