SMTP mail queue data is being written to an encrypted folder
Topic Last Modified: 2005-11-18
The Microsoft® Exchange Server Analyzer Tool queries the Win32_Directory Microsoft Windows® Management Instrumentation (WMI) class to determine the value of the Encrypted key for the Simple Mail Transfer Protocol (SMTP) mail queue folder. If the Exchange Server Analyzer finds the value for Encrypted set to True, a warning is displayed.
When messages arrive at the Exchange computer through the SMTP service, the data is written to the hard disk as an .eml file. By default, these files are stored in the <drive>:\Program Files\Exchsrvr\Mailroot folder on the same partition that Exchange is installed on. If the folder where the SMTP mail queue is stored has file encryption turned on, Exchange performance may be severely degraded. Therefore, encrypting the folder where the SMTP mail queue is stored is not supported.
Microsoft does not support the storage of Exchange data files on an Encrypting File System (EFS) encrypted volume. When you store your Exchange data files on an encrypted volume, the additional overhead significantly impacts the performance of Exchange. The Exchange data files include all the following files:
To help secure your Exchange data files, it is recommended that you prevent unauthorized access to the Exchange computer and that you use the S/MIME message format to encrypt message data.
To resolve this error, you must either turn off file encryption on the SMTP mail queue folder, or move the SMTP mail queue folder to a location where encryption is not enabled.
Right-click the folder where you want to turn off file encryption, and click Properties.
On the General tab, click Advanced.
In the Advanced Attributes dialog box, clear the Encrypt contents to secure data check box, and then click OK.
Open Exchange System Manager.
Click Administrative Groups, expand your administrative group, expand Servers, expand your server, expand Protocols, and then expand SMTP.
Right-click your SMTP virtual server, and then click Stop.
Right-click your SMTP virtual server, and then click Properties.
On the Messages tab, next to the BadMail directory box, click Browse, and then type the path of the new location of the Queue folder.
Right-click your SMTP virtual server, and then click Start.
For more information about moving the Mailroot folder, see the Microsoft Knowledge Base article 822933, "How to change the Exchange 2003 SMTP Mailroot folder location" (http://go.microsoft.com/fwlink/?LinkId=3052&kbid=822933).
For more information about Exchange Server data files and EFS, see the Microsoft Knowledge Base article 834638, "Information about the storage of data files on an encrypted volume in Exchange Server" (http://go.microsoft.com/fwlink/?linkid=3052&kbid=834638).
For information about how secure messages in Microsoft Exchange Server 2003, see the "Exchange Server 2003 Message Security Guide" (http://go.microsoft.com/fwlink/?LinkId=47574).