You have recently installed a new certificate to the Symantec Messaging Gateway control center. It reports that it is good for at least a year. You have configured the software to utilize this certificate for TLS. One or more domains are reeporting that when they attempt TLS exchanges with the gateway, the certificate that they are handed has expired. You want to know how to resolve this.
The two most probable causes would be that the scanner didn't process the new certificate, or the reporting domain has cached the previous certificate data.
To reprocess the certificate to the scanner, log into the control center and do the following:
Edit the scanner configured for TLS
Click the SMTP tab.
Uncheck 'accept TLS' for the inbound MTA
Recheck 'accept TLS' for the inbound MTA
If the information is cached on the sending domains end, then they will need to flush out that information.
If these options do not work, or do not apply in this instance, please contact Symantec Technical Support for further assistance.
Imported Document ID: TECH190115
Subscribing will provide email updates when this Article is updated. Login is required.