Errore:
“Microsoft Exchange could not find a certificate that contains the domain name mail.contoso.com in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector Internet with a FQDN parameter of mail.contoso.com. If the connector’s FQDN is not specified, the computer’s FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.”
in pratica, non era presente un certificato valido per gli indirizzi interni.
Risoluzione:
da Powershell:
Get-ExchangeCertificate
dalla lista dei certificati, era presente il certificato rilasciato dalla CA interna ma non associato a nessun servizio.
Abilitato il suddetto certificato per il servizio SMTP:
Enable-ExchangeCertificate -Thumbprint XXXXXXXXXXXXXXXXXXXXXXXX -Services IMAP, POP, IIS, SMTP
L’event viewer è tornato pulito! 🙂
Liked this post? Follow this blog to get more.