Solved

Exchange 2007: Event ID 12016, There is no valid SMTP TLS certificate

Posted on 2016-08-08
4
79 Views
Last Modified: 2016-08-11
Hi Experts

Application EventID 12016 from MSExchangeTransport on SBS 2008

There is no valid SMTP Transport Layer Security (TLS) certificate for the FQDN of SERVER.domain.local. The existing certificate for that FQDN has expired. The continued use of that FQDN will cause mail flow problems. A new certificate that contains the FQDN of SERVER.domain.local should be installed on this server as soon as possible. You can create a new certificate by using the New-ExchangeCertificate task.

I assume this is related to SSL cert which I replaced recently using a paid 3rd party certificate. I used the SBS Wizard to replace the cert. I did not add server.domain.local  to the names in the cert when created

Is there a way to fix this error?
0
Comment
Question by:Alexandre Michel
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 25

Accepted Solution

by:
-MAS earned 500 total points
ID: 41748276
You need 2 certificates. one 3rd party with IIS,SMTP (IMAP and POP if using) services enabled and one self signed with only SMTP services enabled.

Run "get-ExchangeCertificate" from Exchange Management Shell.
Note Thumbprint of the certificate that reflect the required FQDN name of the server.
Review the current certificate that use by the Exchange server and each certificate function.
Write "Enable-ExchangeCertificate -Thumbprint 2afd26617915932ad096c48eb3b847fc7457662 -Services "SMTP"

If you have only one certificate run "New-Exchangecertificate" which will create a new certificate enable SMTP service on that certificate by the above command if not enabled.

Please check this for details
https://technet.microsoft.com/en-us/library/aa998327(v=exchg.160).aspx

Thanks
0
 
LVL 4

Author Comment

by:Alexandre Michel
ID: 41748729
Thanks. I will implement this on Thursday
Does this affect email flow at all? No-one ever complained that email was missing or delayed
0
 
LVL 25

Expert Comment

by:-MAS
ID: 41748763
Sure.
it will not affect your mail flow.
1
 
LVL 4

Author Closing Comment

by:Alexandre Michel
ID: 41752089
Thanks for your help
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question