When I have seen this error the SMTP connector property for "Specify the FQDN this connector will provide in response to HELO or EHLO" did not match the subject of the certificate.
From: James Kerr [mailto:[email protected]] Sent: Monday, September 21, 2009 10:15 AM To: MS-Exchange Admin Issues Subject: Re: get-exchangecertificate Thanks Simon, Now I just have to figure out why I'm getting the following error then Event ID 12014 Source MSExchangeTransport Microsoft Exchange couldn't find a certificate that contains the domain name mail.domain.com in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector Internet SMTP with a FQDN parameter of mail.domainname.com. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key My cert has the correct CN of mail.domainname.com so I dont underdstand why I'm getting this error. ----- Original Message ----- From: Simon Butler<mailto:[email protected]> To: MS-Exchange Admin Issues<mailto:[email protected]> Sent: Monday, September 21, 2009 10:06 AM Subject: RE: get-exchangecertificate I = IMAP P = POP W = Web S = SMTP The . means that you are missing one, which is U, for Unified Communications. If you do not have that role installed then it will not be listed. Therefore your certificate seems fine. Simon. -- Simon Butler MVP: Exchange, MCSE Sembee Ltd. e: [email protected]<mailto:[email protected]> w: http://www.sembee.co.uk/ w: http://www.amset.info/ w: http://blog.sembee.co.uk/ From: James Kerr [mailto:[email protected]] Sent: 21 September 2009 15:01 To: MS-Exchange Admin Issues Subject: get-exchangecertificate When I run this command I see the SSL cert that I have setup for IIS, SMTP, POP and IMAP but listed under services it says IP.WS. Should it list the services I installed the cert for? What is IP.WS? Anyone know? James
