MSExchangeTransport 12014
This article provides an explanation and possible resolutions for a specific Exchange event. If you don't find what you’re looking for here, try searching Exchange 2010 Help.
Details
Product Name |
Exchange |
Product Version |
14.0 |
Event ID |
12014 |
Event Source |
MSExchangeTransport |
Category |
TransportService |
Symbolic Name |
CannotLoadSTARTTLSCertificateFromStore |
Message Text |
Microsoft Exchange could not find a certificate that contains the domain name %1 in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector %2 with a FQDN parameter of %1. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key. |
Explanation
This Error event indicates that a certificate validation error has occurred with a domain that is configured for Domain Secure e-mail.
User Action
To resolve this error, you must perform one of the following tasks:
Disable Domain Security for the domain.
Fix the certificate validation error. For more information, see Troubleshooting Certificate Validation Errors
Disabling Domain Security
To disable Domain Security for the remote domain, you must remove the domain name from the TLSReceiveDomainSecureList parameter in the Set-TransportConfig cmdlet. If you have not configured dedicated Receive connectors for the domain, you can disable Domain Security for that domain by removing the domain name from the TransportConfig object.
If you are using dedicated Send connectors and Receive connectors for the domain-secured mail flow path, disable the connectors by setting the Enable parameter to $False using both the Set-ReceiveConnector cmdlet and the Set-SendConnector cmdlet. Mail flow from this particular domain will then flow through your default Send connectors and Receive connectors.
For more information, see the following topics:
For More Information
If you are not already doing so, consider running the Exchange tools, which have been created to help you analyze and troubleshoot your Exchange environment. These tools can help make sure that your configuration aligns with Microsoft best practices. They can also help you identify and resolve performance issues and improve mail flow. To run these tools, go to the Toolbox node of the Exchange Management Console. To learn more about these tools, see Managing Tools in the Toolbox.