The Send connector requires Transport Layer Security before the MailFrom command but the server can't establish TLS.
Applies to: Operations Manager Management Pack for Exchange 2010
Topic Last Modified: 2011-08-02
The Microsoft Exchange Server 2010 Management Pack for System Center Operations Manager monitors the Windows Application log on computers running Exchange 2010 and generates this alert when the events specified in the following Details table are logged.
To learn more about this alert, in Operations Manager, do one or more of the following:
From the Operations Console, double-click this alert, and then click the General tab. Review the description of the alert that includes the variables specific to your environment.
From the Operations Console, double-click this alert, and then click the Alert Context tab. Review the logged events that meet the criteria of this Operations Manager alert.
Details
Product Name |
Exchange |
Product Version |
14.0 (Exchange 2010) |
Event ID |
2015 |
Event Source |
MSExchangeTransport |
Alert Type |
Error |
Rule Path |
Microsoft Exchange Server/Exchange 2010/Common Components/Hub Transport and Edge Transport/Transport |
Rule Name |
The Send connector requires Transport Layer Security before the MailFrom command but the server can't establish TLS. |
Explanation
This Error event indicates the specified Send connector must use Transport Layer Security (TLS) for all messages that are sent to the remote server. However, the remote server is not configured to accept TLS.
A Send connector requires TLS for all sent messages when the RequireTLS parameter on the Set-SendConnector cmdlet in the Exchange Management Shell is set to the value $true. The default value is $false.
If the remote server is configured to accept TLS, the remote server displays 250-STARTTLS in the response to the EHLO command. If the remote server does not display 250-STARTTLS in the response to the EHLO command, the remote server is not configured to accept TLS.
User Action
To resolve this error, do one or more of the following:
Configure the remote server to accept TLS. If the remote server is a Microsoft Exchange Server 2010 or Exchange Server 2007 Hub Transport server or Edge Transport server, the AuthMechanism parameter of the relevant Receive connector must contain the value TLS.
You can verify that the remote server accepts TLS by using Telnet on port 25 to connect to the remote server and observing 250-STARTTLS in the response to the EHLO command.
Configure the specified Send connector not to require TLS by setting the RequireTLS parameter on the Set-SendConnector cmdlet in the Exchange Management Shell to the value $false. The default value is $false.
For more information, see the following topics:
For More Information
If you are not already doing so, consider running the Exchange tools, which have been created to help you analyze and troubleshoot your Exchange environment. These tools can help make sure that your configuration aligns with Microsoft best practices. They can also help you identify and resolve performance issues and improve mail flow. To run these tools, go to the Toolbox node of the Exchange Management Console. To learn more about these tools, see Managing Tools in the Toolbox.