MSExchangeTransport 12012
Последнее изменение раздела: 2011-03-19
В этой статье приводится объяснение и возможные варианты устранения неполадок, связанных с определенными событиями Exchange. Если вам не удалось найти ответ на свой вопрос, используйте поиск по Справке Exchange 2010.
Details
Product Name |
Exchange |
Product Version |
14.0 |
Event ID |
12012 |
Event Source |
MSExchangeTransport |
Category |
TransportService |
Symbolic Name |
InternalTransportCertificateMissingInAD |
Message Text |
The internal transport certificate that is used for SMTP authentication by Microsoft Exchange could not be read from Active Directory. The certificate may be missing. If an existing certificate that matches the fully qualified domain name (FQDN) of the server is already installed, run the Enable-ExchangeCertificate cmdlet to publish this certificate to Active Directory. If a certificate for the FQDN of the server is not installed, create a certificate by running the New-ExchangeCertificate cmdlet for the FQDN of the server. |
Explanation
This Error event occurs when Microsoft Exchange detects that the Transport Layer Security (TLS) certificate (also referred to as an internal transport certificate) that this computer uses for Exchange Server authentication is not published to Служба каталогов Active Directory. Specifically, Exchange detected that the version of the certificate located on the server that is running Exchange is more current than the version of the certificate published to Служба каталогов Active Directory.
This error may occur if the following conditions are true:
The Enable-ExchangeCertificate cmdlet was not run after the new certificate was installed.
The certificate update has not yet been replicated to the domain controller that the Exchange server uses after the Enable-ExchangeCertificate cmdlet is run.
The Enable-ExchangeCertificate cmdlet did not update the certificate information in Служба каталогов Active Directory.
User Action
To resolve this error, do the following:
If you did not run the Enable-ExchangeCertificate cmdlet after you installed a certificate, run the cmdlet now.
If you did run the Enable-ExchangeCertificate cmdlet after you installed a certificate, wait for Служба каталогов Active Directory replication to occur. If the issue persists beyond the Служба каталогов Active Directory replication latency configured for your organization, run the Enable-ExchangeCertificate cmdlet again.
For more information, see Создание нового сертификата Exchange and Enable-ExchangeCertificate.
For More Information
Если вы еще не сделали этого, используйте средства Exchange, созданные специально для анализа и устранения неполадок в среде Exchange. Они позволят проверить, соответствует ли конфигурация организации рекомендациям корпорации Майкрософт. Они также помогут найти и устранить проблемы с производительностью и улучшить организацию потока обработки почты. Чтобы запустить эти средства, перейдите на узел Инструменты в консоли управления Exchange. Дополнительные сведения об этих инструментах см. в разделе Управление средствами в меню «Инструменты».