Having installed Exchange 2007 in a VM on VMware 3.0.1, so far so good. I migrated my mailbox from the existing SBS 2003 server without any problems. Last week I started testing Dataviz RoadSync on my Nolia N95, synchronising to Exchange 2007. After some initial failures where email was getting stuck between the Exchange 2007 servers and Exchange 2003 running on SBS 2003, things started to smooth out. The point where things started coming together was after creating a Send Connector on the Exchange 2007 side, this then enabled the routing of emails to and from the new platform. The Exchange 2003 server became a bridgehead and relay server.
When testing the remote syncronisation I found that I was going to need a 3rd party certificate installed on the Exchange 2007 server so that the users would not be confronted by a certificate message everytime they connected. I bought one from Thawte. Once installed, that problem was also solved.
Then yesterday I got an email from one of the users with a bounced email attached. He had tried to send an email out to an external recipient. I had already moved the user to Exchange 2007 so immediately I was thinking there must be a problem somewhere in the routing. There error was SMTP 554 Relay Access Denied.
I was able to solve the problem by adding the FQDN of the external access of mail.peakpartners.com to the Send Connector. This worked for a while but then I noticed that I wasn't receiving any emails anymore! Looking in the error log I found several references to a cerificate error. Clicking the link in the error text took me to a Technet article for Exchange 2007 http://technet.microsoft.com/en-us/library/aa997231.aspx. The article refers to an issue where the certificate installed does not match the services assigned to the certificate.
In this case the certificate was for IIS. It was missing the SMTP service. You have to use the Exchange PowerShell to enter the following command:
Get-ExchangeCertificate | FL *
This command gives you the status of the Certificates installed. You have to look for the line saying Status. on my server it looked like this:
Status : IIS
You also need to look for the saying Thumbprint. Copy this text as you will need it shortly.
Now you enter the Enable-ExchangeCertificate command use the Thumbprint you found earlier.
Enable-ExchangeCertificate -Thumbprint 5113ae0233a72fccb75b1d0198628675333d010e -Services "IIS, SMTP"
After doing this I tested the outgoing emails and incoming and all was functioning as it should and there were no more errors in the errorlog of either server.
