Share via

Problem with syncing with the Edge server

Михаил Андросов 396 Reputation points
2023-02-13T18:30:02.28+00:00

Hi!

In our network, we use two Exchange 2013 servers, both servers have all the roles installed.
We also use two servers with the Edge role.
I received a complaint that a new user cannot receive mail from outside. Mail arrives inside the organization.
I ran the test-edgesynchronization command and I see that there are problems with one of the Edge servers:
[PS] C:\Windows\system32>test-edgesynchronization


RunspaceId                  : a57d7cec-792f-487e-aa48-27ec69f99430
SyncStatus                  : Failed
UtcNow                      : 13.02.2023 13:10:41
Name                        : mos-msg-edge-02
LeaseHolder                 :
LeaseType                   : None
FailureDetail               : EdgeSync service cannot connect to this subscription because of error "The supplied crede
                              ntial is invalid.".
LeaseExpiryUtc              : 01.01.0001 0:00:00
LastSynchronizedUtc         : 01.01.0001 0:00:00
TransportServerStatus       : Skipped
TransportConfigStatus       : Skipped
AcceptedDomainStatus        : Skipped
RemoteDomainStatus          : Skipped
SendConnectorStatus         : Skipped
MessageClassificationStatus : Skipped
RecipientStatus             : Skipped
CredentialRecords           : Number of credentials 0
CookieRecords               : Number of cookies 0

RunspaceId                  : a57d7cec-792f-487e-aa48-27ec69f99430
SyncStatus                  : Normal
UtcNow                      : 13.02.2023 13:10:41
Name                        : MOS-MSG-EDGE
LeaseHolder                 : CN=MOS-MSG-05,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administra
                              tive Groups,CN=xxxx,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=xxxx,DC=com
LeaseType                   : Option
FailureDetail               :
LeaseExpiryUtc              : 13.02.2023 13:39:08
LastSynchronizedUtc         : 13.02.2023 13:09:08
TransportServerStatus       : Skipped
TransportConfigStatus       : Skipped
AcceptedDomainStatus        : Skipped
RemoteDomainStatus          : Skipped
SendConnectorStatus         : Skipped
MessageClassificationStatus : Skipped
RecipientStatus             : Skipped
CredentialRecords           : Number of credentials 6
CookieRecords               : Number of cookies 3

An error is logged in the event log:
Source: MSExchange EdgeSync
ID: 1024
Failed to connect to the Edge Transport server ADAM instance with exception The supplied credential is invalid..  This could be caused by a failure to resolve the Edge Transport server name mos-msg-edge-02.xxxx.ru in DNS, a failure trying to connect to port 50636 on mos-msg-edge-02.xxxx.com, network connectivity issues, an invalid certificate, or an expired subscription.  Verify your network and server configuration.

This error is registered on the Edge server:
Source: MSExchangeTransport 
ID: 2018 
Outbound direct trust authentication failed for certificate CN=Microsoft Exchange Server Auth Certificate. The target IP address of the Exchange server that Microsoft Exchange tried to authenticate to is [10.255.159.62]. Make sure EdgeSync is running properly.

Before that, everything worked fine. Nothing has changed on the servers. What could be the problem?
Why is everything fine for one Edge server, but not for the second?
Exchange Exchange Server Other
Microsoft 365 and Office Install, redeem, activate For business Windows
Exchange Exchange Server Management
Accepted answer
  1. Yuki Sun-MSFT 41,376 Reputation points Moderator
    2023-02-15T07:33:07.8466667+00:00

    Hi @Михаил Андросов,

    The problem was solved by re-subscription.

    Great to know that you've managed to be figured it out by re-subscription and many thanks for your share! This can definitely help others experiencing the same thing to reference.

    By the way, since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to "Accept" the answer. Or you can also accept Andy's post earlier.

    [Problem with syncing with the Edge server]

    Issue Symptom: Exchange 2013 servers, both servers have all the roles installed plus two servers with the Edge role.
    I received a complaint that a new user cannot receive mail from outside. Mail arrives inside the organization.
    I ran the test-edgesynchronization command and I see that there are problems with one of the Edge servers:

    [PS] C:\Windows\system32>test-edgesynchronization

RunspaceId                  : a57d7cec-792f-487e-aa48-27ec69f99430 SyncStatus                  : Failed UtcNow                      : 13.02.2023 13:10:41 Name                        : mos-msg-edge-02 LeaseHolder                 : LeaseType                   : None FailureDetail               : EdgeSync service cannot connect to this subscription because of error "The supplied crede ntial is invalid.". LeaseExpiryUtc              : 01.01.0001 0:00:00 LastSynchronizedUtc         : 01.01.0001 0:00:00 TransportServerStatus       : Skipped TransportConfigStatus       : Skipped AcceptedDomainStatus        : Skipped RemoteDomainStatus          : Skipped SendConnectorStatus         : Skipped MessageClassificationStatus : Skipped RecipientStatus             : Skipped CredentialRecords           : Number of credentials 0 CookieRecords               : Number of cookies 0

RunspaceId                  : a57d7cec-792f-487e-aa48-27ec69f99430 SyncStatus                  : Normal UtcNow                      : 13.02.2023 13:10:41 Name                        : MOS-MSG-EDGE LeaseHolder                 : CN=MOS-MSG-05,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administra tive Groups,CN=xxxx,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=xxxx,DC=com LeaseType                   : Option FailureDetail               : LeaseExpiryUtc              : 13.02.2023 13:39:08 LastSynchronizedUtc         : 13.02.2023 13:09:08 TransportServerStatus       : Skipped TransportConfigStatus       : Skipped AcceptedDomainStatus        : Skipped RemoteDomainStatus          : Skipped SendConnectorStatus         : Skipped MessageClassificationStatus : Skipped RecipientStatus             : Skipped CredentialRecords           : Number of credentials 6 CookieRecords               : Number of cookies 3

An error is logged in the event log: Source: MSExchange EdgeSync


    ID: 1024 Failed to connect to the Edge Transport server ADAM instance with exception The supplied credential is invalid..  This could be caused by a failure to resolve the Edge Transport server name mos-msg-edge-02.xxxx.ru in DNS, a failure trying to connect to port 50636 on mos-msg-edge-02.xxxx.com, network connectivity issues, an invalid certificate, or an expired subscription.  Verify your network and server configuration.

This error is registered on the Edge server: Source: MSExchangeTransport


    ID: 2018 Outbound direct trust authentication failed for certificate CN=Microsoft Exchange Server Auth Certificate. The target IP address of the Exchange server that Microsoft Exchange tried to authenticate to is [10.255.159.62]. Make sure EdgeSync is running properly.

    Solution:

    The problem was solved by re-subscription.

    0 comments

2 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Михаил Андросов 396 Reputation points
    2023-02-15T06:15:11.3433333+00:00

    The problem was solved by re-subscription.

    1 person found this answer helpful.
    0 comments
  2. Andy David - MVP 157.4K Reputation points MVP Volunteer Moderator
    2023-02-15T07:19:01.04+00:00

    Can you re-subscribe the Edge Sync?

    1 person found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.