We have renewed the wildcard certificate for Exchange server 2016. We have a hybrid deployments.
We imported the certificate via the EMC console and assigned it for SMTP and IIS. Everything works.
We have now found that the mail server does not support TLS.
Error ID 12014 is listed in the system log.
Exchange refers to the old wildcard certificate.
We tried to fix it
$cert = Get-ExchangeCertificate -Thumbprint 2F5EExxxx84F707022EE5A464FDCC2
$tlscertificatename = "<i>$($cert.Issuer)<s>$($cert.Subject)"
Set-ReceiveConnector "xxx\Client Frontend xxx" -TlsCertificateName $tlscertificatename
but the error still pops up
We reissued the new certificate and added it again via the EMC console.
but the error still pops up.
A new attempt to set a new certificate on the ReceiveConnector will fail.
We removed all old wildcard certificates via the MMC console, but the system log still shows error ID 12014 with a link to the expired certificate, which is no longer on the server.