|
exchange
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
OAL - User has invalid/expired certificatesi am getting the follwoing event on my Exchange 2003 SE server: ------------------------------- Event Type: Warning Event Source: MSExchangeSA Event Category: OAL Generator Event ID: 9323 Date: 30/05/2006 Time: 05:11:29 User: N/A Computer: SRVR3 Description: Entry 'User1' has invalid or expired e-mail certificates. These certificates will not be included in the offline address list for '\Global Address List'. - Default Offline Address List ------------------------------- How do i find these certificates to renew/revoke/delete them. I have had a look at the CA and I can't find any certificates related to email for any users. Has any had this issue and managed to resolve it? TIA, Jarryd Hi,
I have had a look at the User in question in ADUC. Under the Published Certificates for their account I found an expired EFS certificate. I duly removed it. I rebuilt the GAL and then the OAL. I found that the error did not occur in the event log when it was doing the rebuild for the OAL. However, when I send/receive I still get the following error: Task 'Microsoft Exchange Server' reported error (0x8004010F) : 'The operation failed. An object could not be found.' From what I have read about this error there should be something wrong with the OAL for it to be logged. I have followed all the steps in KB article 905813 (http://support.microsoft.com/?kbid=905813), and I have nothing wrong with configuration. So what could be causing the above error? I don't get errors when rebuilding the OAL and I have none of the problems outlined int KB 905813. So what is the problem? TIA, Jarryd Show quote "Jarryd" <j@n.c> wrote in message news:ufmx1e8gGHA.1324@TK2MSFTNGP04.phx.gbl... > Hi, > > i am getting the follwoing event on my Exchange 2003 SE server: > > ------------------------------- > Event Type: Warning > Event Source: MSExchangeSA > Event Category: OAL Generator > Event ID: 9323 > Date: 30/05/2006 > Time: 05:11:29 > User: N/A > Computer: SRVR3 > Description: > Entry 'User1' has invalid or expired e-mail certificates. These > certificates will not be included in the offline address list for '\Global > Address List'. > - Default Offline Address List > ------------------------------- > > How do i find these certificates to renew/revoke/delete them. I have had > a look at the CA and I can't find any certificates related to email for > any users. Has any had this issue and managed to resolve it? > > TIA, > > Jarryd > > By default the OAB when being built will filter out Expired and Invalid
certifications. If you turn up diagnostic logging for OAL Generation, you can see this. The 0x8004010F error Here is a good blog you can read about this process. http://msexchangeteam.com/archive/2005/07/25/408188.aspx Dgoldman Show quote "Jarryd" <j@n.c> wrote in message news:ur%23CMO9gGHA.1864@TK2MSFTNGP02.phx.gbl... > Hi, > > I have had a look at the User in question in ADUC. Under the Published > Certificates for their account I found an expired EFS certificate. I duly > removed it. I rebuilt the GAL and then the OAL. I found that the error > did not occur in the event log when it was doing the rebuild for the OAL. > However, when I send/receive I still get the following error: > > Task 'Microsoft Exchange Server' reported error (0x8004010F) : 'The > operation failed. An object could not be found.' > > From what I have read about this error there should be something wrong > with the OAL for it to be logged. I have followed all the steps in KB > article 905813 (http://support.microsoft.com/?kbid=905813), and I have > nothing wrong with configuration. So what could be causing the above > error? I don't get errors when rebuilding the OAL and I have none of the > problems outlined int KB 905813. So what is the problem? > > TIA, > > Jarryd > > > "Jarryd" <j@n.c> wrote in message > news:ufmx1e8gGHA.1324@TK2MSFTNGP04.phx.gbl... >> Hi, >> >> i am getting the follwoing event on my Exchange 2003 SE server: >> >> ------------------------------- >> Event Type: Warning >> Event Source: MSExchangeSA >> Event Category: OAL Generator >> Event ID: 9323 >> Date: 30/05/2006 >> Time: 05:11:29 >> User: N/A >> Computer: SRVR3 >> Description: >> Entry 'User1' has invalid or expired e-mail certificates. These >> certificates will not be included in the offline address list for >> '\Global Address List'. >> - Default Offline Address List >> ------------------------------- >> >> How do i find these certificates to renew/revoke/delete them. I have had >> a look at the CA and I can't find any certificates related to email for >> any users. Has any had this issue and managed to resolve it? >> >> TIA, >> >> Jarryd >> >> > >  
Other interesting topics
|
|||||||||||||||||||||||
