Conectare
Microsoft.com
 
Microsoft
 
 
 
Microsoft >
OCS 2007 R2 - OCS Protocol Stack - Event-ID 14501, 14502

Locked OCS 2007 R2 - OCS Protocol Stack - Event-ID 14501, 14502

  • 20 octombrie 2009 12:52
     
     
    Sign in pentru a vota
    0

    Hello,

    one of my front-end-Servers shows a lot events like the following one:

    Protokollname: Office Communications Server
    Quelle:        OCS Protocol Stack
    Datum:         20.10.2009 13:45:18
    Ereignis-ID:   14501
    Aufgabenkategorie:(1001)
    Ebene:         Fehler
    Schlüsselwörter:Klassisch
    Benutzer:      Nicht zutreffend
    Computer:      front-end.domain.de
    Beschreibung:
    A significant number of invalid certificates have been provided by remote IP address 1x3.1x4.1x8.45 when attempting to establish an MTLS peer. There have been 30 such failures in the last 60 minutes.
    Certificate Names associated with this peer were
    exchange-server

    The serial number of this certificate is
    35AA9-----0400001451.
    The issuer of this certificate is Enterprise-Authority
    The specific failure types and their counts are identified below.
    Instance count   - Failure Type
    2890                 C3E93D6A
                    
    lcserror C3E93D6A

    0xC3E93D6A -> (SIPPROXY_E_ROUTING_UNKNOWN_SERVER)
    (C:\Program Files\Microsoftffice Communications Server 2007 R2\ResKit\RTCERes.dll)

    "The FQDN in the peer's certificate subject name is not a configured server."

    What does that mean ?

    The exchange server is an exchange 2007 server with the roles "Hub transport", "Client Access" and "Unified messaging"

    A SIP-Trunk connects the exchange server with the ocs-front-end-server.

    Are there any special requirements for the certificate aon the exchange server ?

    Any kind of help is very much appreciated

    Best regards
    Harald

       

    Toate mesajele

    • 20 octombrie 2009 20:08
       
       Răspuns
      Sign in pentru a vota
      0

      Do you have a certificate with on the Exchange UM role?  If so, this certificate needs to be issued to the FQDN of the Exchange UM server and needs to be issues by a CA that is trusted on the OCS FE Server. 

      Mark King | C/D/H | MCTS:OCS | MCSE: Messaging | MCITP:Enterprise Administrator | CCNA
         
      • 27 octombrie 2009 06:24
        Moderator
         
         Răspuns
        Sign in pentru a vota
        0
        Hi
        Any update for your issue?
        Agree with Mark.
        Per your description, do you integrate the Exchange UM with the OCS , if so, did you Obtain a certificate for each Exchange Unified Messaging server from a trusted root CA. The certificates are required for mutual TLS (MTLS) between the servers running Exchange Unified Messaging and Office Communications Server.
        You can get more information related with your issue refer to below links:
        http://technet.microsoft.com/en-us/library/dd425084(office.13).aspx 
        http://technet.microsoft.com/en-us/library/dd441297(office.13).aspx 
        http://technet.microsoft.com/en-us/library/dd425090(office.13).aspx

        Regards!
           
        • 2 noiembrie 2009 12:40
           
           
          Sign in pentru a vota
          0
          Hi,

          I did obtain the certificate by an Enterprise integrated CA which ist trusted by the exchange server and the OCS FE server.

          Regards